A company has an Amazon EC2 instance running on a private subnet that needs to access a public websites to download patches and updates. The company does not want external websites to see the EC2 instance IP address or initiate connection to it. How can a solution architect achieve this objective?
A) Create a site-to-site VPN connection between the private subnet and the network in which the public site is deployed.
B) Create a NAT gateway in a public subnet. Route outbound traffic from the private subnet through the NAI gateway.
C) Create a network ACL for the private subnet where the EC2 instance deployed only allows access from the IP address range of the public website.
D) Create a security group that only allows connections from the IP address range of the public website. Attach the security group to the EC2 instance.
Correct Answer:
Verified
Q391: A company is using Amazon EC2 to
Q392: A bicycle sharing company is developing a
Q393: A company currently stores symmetric encryption keys
Q394: A company has a Microsoft Windows-based application
Q395: A company plans to store sensitive user
Q397: A Solutions Architect must design a web
Q398: A three-tier web application processes orders from
Q399: A company is creating an architecture for
Q400: A company has created a VPC with
Q401: A company's packaged application dynamically creates and
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents