Examtopics

コメント(7)

• 正解だと思う選択肢: B

  To meet the requirements of the company's security policy, the SysOps administrator should choose option B: Add a NAT gateway to a private subnet. In the route table for the private subnets, add a route to the NAT gateway.

  In this scenario, the EC2 instances in the private subnets need access to the internet to download software updates, but they cannot be directly connected to the internet. A NAT gateway allows the EC2 instances to connect to the internet indirectly by routing their traffic through the NAT gateway, which is located in a public subnet. The NAT gateway has a direct connection to the internet, so it can access the internet on behalf of the EC2 instances.

  To set this up, the SysOps administrator should create a NAT gateway in a private subnet and then add a route to the NAT gateway in the route table for the private subnets. This will allow the EC2 instances in the private subnets to access the internet through the NAT gateway.

  👍 3

  MrMLB2022/12/18
• 正解だと思う選択肢: C

  C https://aws.amazon.com/premiumsupport/knowledge-center/nat-gateway-vpc-private-subnet/

  👍 3

  jessbase20222022/12/25
• 正解だと思う選択肢: C

  A Nat Gateway enables instances in private subnets to connect to the internet. The Nat gateway must be deployed in the public subnet with an Elastic IP. Once the resource is created, a route table associated with the the private subnet needs to point internet-bound traffic to the NAT gateway. https://towardsdatascience.com/connecting-to-an-ec2-instance-in-a-private-subnet-on-aws-38a3b86f58fb

  👍 2

  tts12342022/12/07