Multiple Choice
A company has an Amazon EC2 instance running on a private subnet that needs to access a public websites to download patches and updates. The company does not want external websites to see the EC2 instance IP address or initiate connection to it. How can a solution architect achieve this objective?
A) Create a site-to-site VPN connection between the private subnet and the network in which the public site is deployed.
B) Create a NAT gateway in a public subnet. Route outbound traffic from the private subnet through the NAI gateway.
C) Create a network ACL for the private subnet where the EC2 instance deployed only allows access from the IP address range of the public website.
D) Create a security group that only allows connections from the IP address range of the public website. Attach the security group to the EC2 instance.
Correct Answer:
Verified
Correct Answer:
Verified
Q291: A company has a Microsoft Windows-based application
Q292: A company wants to reduce its Amazon
Q293: A company is concerned that two NAT
Q294: A company is reviewing a recent migration
Q295: A user owns a MySQL database that
Q297: A company requires a durable backup storage
Q298: A company runs a multi-tier web application
Q299: An application hosted on AWS is experiencing
Q300: A company is preparing to deploy a
Q301: A solutions architect must create a highly