Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 249 discussion

Register the customer-owned block of IP addresses in the company's AWS account: This allows the company to use their existing IP addresses within AWS, ensuring customers don't need to update firewall allow lists. Create Elastic IP addresses from the address pool: Elastic IP addresses are static IPv4 addresses for dynamic cloud computing. Creating them from the customer-owned pool allows assigning these IP addresses to AWS resources. Assign the Elastic IP addresses to an AWS Transfer for SFTP endpoint: AWS Transfer for SFTP enables secure SFTP file transfers. Assigning customer-owned Elastic IP addresses to the endpoint maintains existing IP addresses for customers. Use AWS Transfer to store files in Amazon S3: AWS Transfer for SFTP integrates with Amazon S3, allowing ingested files to be stored directly in S3 buckets, eliminating the need to manage file storage infrastructure and reducing operational overhead.

Option A is the only possible option.

Option A is valid Option D: S3 doen't have support for SFTP option -> out B, C: using EC2 to host FTP (not SFTP) while there is a native soltion in option A -> out

should use AWS Transfer for SFTP

https://aws.amazon.com/blogs/storage/use-ip-whitelisting-to-secure-your-aws-transfer-for-sftp-servers/

Correct A.

it's A

D is too manual

its an A

A - AWS Managed SFTP

AWS Transfer for SFTP, fully managed service, no operational overhead

Option A suggests using AWS Transfer for SFTP, which is a fully managed service that enables the transfer of files over the Secure File Transfer Protocol (SFTP) directly into and out of Amazon S3. By registering the customer-owned block of IP addresses in the company's AWS account and creating Elastic IP addresses from that address pool, the company can assign those IP addresses to an AWS Transfer for SFTP endpoint. This allows the customers to continue using their existing firewall allow lists without requiring any changes. The files transferred through the SFTP endpoints are stored directly in Amazon S3, reducing operational overhead.

AWS Transfer Family provides fully managed support for Secure File Transfer Protocol (SFTP), File Transfer Protocol over SSL (FTPS), and File Transfer Protocol (FTP). AWS Transfer Family provides a seamless migration experience while preserving authentications and security policies, and it can handle the scale of demanding file transfer workloads. The file transfer can be stored directly into Amazon S3 or Amazon EFS.

A is the right answer