ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified SysOps Administrator - Associate All Questions

View all questions & answers for the AWS Certified SysOps Administrator - Associate exam
Go to Exam

Exam AWS Certified SysOps Administrator - Associate topic 1 question 327 discussion

Exam question from Amazon's AWS Certified SysOps Administrator - Associate
Question #: 327
Topic #: 1
[All AWS Certified SysOps Administrator - Associate Questions]

A company has an application that uses a scheduled AWS Lambda function to retrieve datasets from external sources over the internet. The function is not associated with a VPC. The company is modifying the application to store the information that the Lambda function retrieves on an Amazon RDS DB instance in a private subnet. The VPC has two public subnets and two private subnets.

A SysOps administrator must deploy a solution that allows the Lambda function to access the new database and continue to access the internet.

Which solution meets these requirements?

  • A. Create a new Lambda function with VPC access and an Elastic IP address. Attach the function to public subnets in two Availability Zones. Associate a security group with the Elastic IP address. Configure the security group outbound rules to allow Lambda to access the required resources.
  • B. Create a new Lambda function with VPC access and two public IP addresses. Attach the function to public subnets in the same Availability Zones that the database uses. Associate a security group with the function. Configure the security group inbound rules to allow Lambda to access the required resources.
  • C. Reconfigure the Lambda function for VPC access. Add NAT gateways to the public subnets in the VPAdd route table entries in the private subnets to route through the NAT gateways to the internet. Attach the function to the private subnets that support the database. Associate a security group with the function. Configure the security group outbound rules to allow Lambda to access the internet.
  • D. Reconfigure the Lambda function for VPC access. Attach the function to the private subnets. Add route table entries in the private subnets to route through the internet gateway to the internet. Associate a security group with the subnets. Configure the security group inbound rules to allow Lambda to access the required resources through the internet gateway.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by jlmadvig at July 4, 2023, 5:16 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
habros
9 months, 2 weeks ago
Selected Answer: C
The only sane answer is C. Yes, you do not need to reconfigure a Lambda function whenever you want to attach a VPC. Hence, A and B are out. There are already limited Public IPv4 addresses out there, hence the cost effective way is to use NAT gateway/instance (in fact is the only option). Hence, D is out as well.
upvoted 3 times
...
Bhrino
9 months, 3 weeks ago
Selected Answer: C
C is correct. A little hint if a question mentions anything about a private subnet needing to access the internet in most cases the answer will be Nat gateway / instance (if gateway isn't an option the NAT instance would work)
upvoted 3 times
...
[Removed]
11 months, 1 week ago
C is correct
upvoted 2 times
...
jlmadvig
11 months, 1 week ago
Selected Answer: C
The correct answer is C. Since the Lambda function needs to access the Amazon RDS DB instance in a private subnet while still accessing the internet, it should be configured to run within the VPC.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel