Multiple Choice
A company has an Amazon EC2 instance running on a private subnet that needs to access a public website to download patches and updates. The company does not want external websites to see the EC2 instance IP address or initiate connections to it. How can a solutions architect achieve this objective?
A) Create a site-to-site VPN connection between the private subnet and the network in which the public site is deployed.
B) Create a NAT gateway in a public subnet. Route outbound traffic from the private subnet through the NAT gateway.
C) Create a network ACL for the private subnet where the EC2 instance deployed only allows access from the IP address range of the public website.
D) Create a security group that only allows connections from the IP address range of the public website. Attach the security group to the EC2 instance.
Correct Answer:
Verified
Correct Answer:
Verified
Q415: A company is building a document storage
Q416: A solutions architect needs to design a
Q417: A company needs to implement a relational
Q418: A solutions architect is designing the architecture
Q419: A company is preparing to migrate its
Q421: A company is planning to transfer multiple
Q422: A company is planning to migrate a
Q423: A company has a custom application running
Q424: A company plans to store sensitive user
Q425: A company operates a website on Amazon