ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS-SysOps All Questions

View all questions & answers for the AWS-SysOps exam
Go to Exam

Exam AWS-SysOps topic 1 question 852 discussion

Exam question from Amazon's AWS-SysOps
Question #: 852
Topic #: 1
[All AWS-SysOps Questions]

A company has a multi-tier web application. In the web tier, all the servers are in private subnets inside a VPC. The development team wants to make changes to the application that requires access to Amazon S3.
What should be done to accomplish this?

  • A. Create a customer gateway to connect to Amazon S3. Modify the route table of the private subnets to use the customer gateway.
  • B. Create a gateway VPC endpoint for Amazon S3. Modify the route table of the private subnets to use the gateway VPC endpoint.
  • C. Create a NAT gateway in the private subnets. Modify the route table of the subnets to use the NAT gateway.
  • D. Create an S3 bucket policy to allow connections from the private subnets. Modify the route table.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
Reference:
https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Scenario2.html
by MrDEVOPS at Aug. 31, 2020, 8:48 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
orebaron
Highly Voted 2 years, 9 months ago
I would go with B , VPC gateway endpoint, in fact this was the way to connect to S3 without using internet but I'm not sure
upvoted 8 times
...
albert_kuo
Most Recent 11 months, 2 weeks ago
Selected Answer: B
Option B involves using a VPC endpoint to allow communication between resources in your VPC and Amazon S3 without exposing the S3 buckets to the public internet.
upvoted 1 times
...
gulu73
1 year, 5 months ago
Selected Answer: B
vote for B
upvoted 1 times
...
RicardoD
2 years, 8 months ago
B is the answer
upvoted 2 times
...
arvsrv
2 years, 8 months ago
Answer is B
upvoted 2 times
...
abhishek_m_86
2 years, 8 months ago
B. Create a gateway VPC endpoint for Amazon S3. Modify the route table of the private subnets to use the gateway VPC endpoint. Seems correct
upvoted 2 times
...
jackdryan
2 years, 8 months ago
I'll go with B
upvoted 1 times
...
weril
2 years, 8 months ago
it's B.
upvoted 1 times
...
MFDOOM
2 years, 8 months ago
B. Create a gateway VPC endpoint for Amazon S3. Modify the route table of the private subnets to use the gateway VPC endpoint.
upvoted 1 times
...
Ranginprithibi
2 years, 8 months ago
Private Subnet - B
upvoted 1 times
...
Pirulou
2 years, 9 months ago
Ans B,
upvoted 2 times
...
MrDEVOPS
2 years, 9 months ago
C is WRONG , because NAT are created in public subnets not private Any one knows the exact answer?
upvoted 3 times
vob
2 years, 8 months ago
Answer is B. You are correct, C is not right because NAT gateway would have to be in the public subnet, would not be great anyway as routing to S3 over internet means ugly bucket policy with condition on IP or similar (instead of wide open to the public).
upvoted 4 times
...
Radi112
2 years, 9 months ago
Correct must be B
upvoted 17 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel