A security officer has requested that internet access be removed from subnets in a VPC. The subnets currently route internet-bound traffic to a NAT gateway. A SysOps administrator needs to remove this access while allowing access to Amazon S3. Which solution will meet these requirements?
A) Set up an internet gateway. Update the route table on the subnets to use the internet gateway to route traffic to Amazon S3.
B) Set up an S3 VPC gateway endpoint. Update the route table on the subnets to use the gateway endpoint to route traffic to Amazon S3.
C) Set up additional NAT gateways in each Availability Zone. Update the route table on the subnets to use the NAT gateways to route traffic to Amazon S3.
D) Set up an egress-only internet gateway. Update the route table on the subnets to use the egress-only internet gateway to route traffic to Amazon S3.
Correct Answer:
Verified
Q822: A large company has multiple AWS accounts
Q823: A user is running a batch process
Q824: A user has configured ELB with two
Q825: A user has configured an Auto Scaling
Q826: An organization has launched 5 instances: 2
Q828: A streaming company is using AWS resources
Q829: You run a web application where web
Q830: A user is planning to schedule a
Q831: A user has created a VPC with
Q832: A user has setup a web application
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents