A company has an Amazon EC2 instance running on a private subnet that needs to access a public website to download patches and updates. The company does not want external websites to see the EC2 instance IP address or initiate connections to it. How can a solutions architect achieve this objective?
A) Create a site-to-site VPN connection between the private subnet and the network in which the public site is deployed.
B) Create a NAT gateway in a public subnet. Route outbound traffic from the private subnet through the NAT gateway.
C) Create a network ACL for the private subnet where the EC2 instance deployed only allows access from the IP address range of the public website.
D) Create a security group that only allows connections from the IP address range of the public website. Attach the security group to the EC2 instance.
Correct Answer:
Verified
Q279: A company's HTTP application is behind a
Q280: A company is deploying an application that
Q281: A company has a website running on
Q282: A solutions architect needs to ensure that
Q283: A solutions architect is designing storage for
Q285: A solutions architect has created two IAM
Q286: A manufacturing company wants to implement predictive
Q287: A company hosts a static website on-premises
Q288: A company is hosting a website behind
Q289: A financial services company has a web
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents