Exam AWS-SysOps topic 1 question 824 discussion

C NAT gateway is created in a specific Availability Zone and implemented with redundancy in that zone only. To create an Availability Zone-independent architecture, create a NAT gateway in each Availability Zone and configure your routing to ensure that resources use the NAT gateway in the same Availability Zone. Refer to https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html

Not A. Virtual Gateway is for VPN, irrelevant. Not B. IGW is a VPC resource, not an AZ resource. Not D. Default route table is for the entire VPC. C. Because NGW is placed in one of the two public subnets. The route table associated with the private subnets contains a route to 0.0.0.0/0 for the NGW. If the AZ with the NGW goes down, the remaining single private subnet in the other AZ can no longer communicate with the internet and could cause applications to fail.

To ensure high availability and redundancy for outbound internet access in a multi-AZ VPC, it is recommended to deploy a NAT gateway in each AZ. This way, even if one AZ experiences an outage, the instances in the private subnets associated with the other AZ can still use the NAT gateway in their own AZ to maintain outbound internet connectivity.

C is the answer

C is Correct. Forget the scenario, just read all the statements in the answers and go back to the basics. Remember that each subnet must reside entirely within one Availability Zone and cannot span zones. You immediately see that C is correct.

C is the answer

C is correct

C. A single NAT gateway, because it is not redundant across both AZs.

I'll go with C

NAT gateway is highly available, IGW is not.

C is the correct option here

C. A single NAT gateway, because it is not redundant across both AZs.