Examtopics

AWS Certified DevOps Engineer - Professional

330
332

Topic 1 Question 331
A company has deployed a new REST API by using Amazon API Gateway. The company uses the API to access confidential data. The API must be accessed from only specific VPCs in the company.

Which solution will meet these requirements?
- Create and attach a resource policy to the API Gateway API. Configure the resource policy to allow only the specific VPC IDs.
- Add a security group to the API Gateway API. Configure the inbound rules to allow only the specific VPC IP address ranges.
- Create and attach an IAM role to the API Gateway API. Configure the IAM role to allow only the specific VPC IDs.
- Add an ACL to the API Gateway API. Configure the outbound rules to allow only the specific VPC IP address ranges.
ユーザの投票
コメント(2)
- 正解だと思う選択肢: A
  Explanation: API Gateway supports resource policies, which can restrict access based on specific conditions, such as VPC IDs or IP ranges. You can attach a resource policy to the API Gateway that allows access only from specific VPCs. This is the most direct and secure way to meet the requirement of allowing access only from specific VPCs.
  
  👍 4
  Ky_242024/12/16
- 正解だと思う選択肢: A
  https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-private-api-create.html
  
  👍 3
  CHRIS127222222024/12/28
シャッフルモード

330
332