ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 273 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional
Question #: 273
Topic #: 1
[All AWS Certified Solutions Architect - Professional Questions]

A user has created a VPC with public and private subnets using the VPC wizard. The VPC has CIDR 20.0.0.0/16. The private subnet uses CIDR 20.0.0.0/24. The
NAT instance ID is i-a12345.
Which of the below mentioned entries are required in the main route table attached with the private subnet to allow instances to connect with the internet?

  • A. Destination: 20.0.0.0/0 and Target: 80
  • B. Destination: 20.0.0.0/0 and Target: i-a12345
  • C. Destination: 20.0.0.0/24 and Target: i-a12345
  • D. Destination: 0.0.0.0/0 and Target: i-a12345
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
A user can create a subnet with VPC and launch instances inside that subnet. If the user has created a public private subnet, the instances in the public subnet can receive inbound traffic directly from the Internet, whereas the instances in the private subnet cannot. If these subnets are created with Wizard, AWS will create two route tables and attach to the subnets. The main route table will have the entry "Destination: 0.0.0.0/0 and Target: i-a12345", which allows all the instances in the private subnet to connect to the internet using NAT.
Reference:
http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Scenario2.html
by Mkumar at May 20, 2020, 11:02 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ravisar
3 years, 4 months ago
Answer is D Internet Gateway (IGW) allows instances with public IPs to access the internet. NAT Gateway (NGW) allows instances with no public IPs to access the internet The route table entry is as follows for outbound connections from Private subnet: 0.0.0.0/0 - Destination: NAT Gateway/VirtualPrivateGateway/TransitGateway For public subnet outbound connections, the route table entry should be: 0.0.0.0/0 - Destination: Internet Gateway https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Route_Tables.html Other entry needed in route table is for inbound connections in private and public subnet is: Private Subnet CIDR - Destination : Local
upvoted 2 times
...
cldy
3 years, 6 months ago
D. Destination: 0.0.0.0/0 and Target: i-a12345
upvoted 1 times
...
Mkumar
3 years, 7 months ago
Answer C
upvoted 1 times
Mkumar
3 years, 7 months ago
typo its D
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel