ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS-SysOps All Questions

View all questions & answers for the AWS-SysOps exam
Go to Exam

Exam AWS-SysOps topic 1 question 604 discussion

Exam question from Amazon's AWS-SysOps
Question #: 604
Topic #: 1
[All AWS-SysOps Questions]

A SysOps Administrator created an Amazon VPC with an IPv6 CIDR block, which requires access to the internet. However, access from the internet towards the
VPC is prohibited. After adding and configuring the required components to the VPC, the Administrator is unable to connect to any of the domains that reside on the internet.
What additional route destination rule should the Administrator add to the route tables?

  • A. Route ::/0 traffic to a NAT gateway
  • B. Route ::/0 traffic to an internet gateway
  • C. Route 0.0.0.0/0 traffic to an egress-only internet gateway
  • D. Route ::/0 traffic to an egress-only internet gateway
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Seb at Aug. 28, 2019, 9:11 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Seb
Highly Voted 2 years, 7 months ago
correct answer is D https://docs.aws.amazon.com/vpc/latest/userguide/get-started-ipv6.html
upvoted 24 times
...
white_shadow
Highly Voted 2 years, 7 months ago
D. IPV4 --> NAT IPV6--> Egress-Only https://docs.aws.amazon.com/vpc/latest/userguide/egress-only-internet-gateway.html#egress-only-internet-gateway-working-with
upvoted 12 times
...
albert_kuo
Most Recent 10 months, 1 week ago
Selected Answer: B
An internet gateway is a horizontally scalable, redundant, and highly available VPC component that allows communication between instances in the VPC and the internet. By adding a route for ::/0 (IPv6 default route) traffic to the internet gateway, the Administrator enables outbound internet access from the VPC. Egress-only Internet Gateway is similar to a NAT Gateway but for IPv6
upvoted 1 times
albert_kuo
8 months, 3 weeks ago
Changed to D
upvoted 1 times
...
...
Finger41
1 year, 10 months ago
Selected Answer: D
https://docs.aws.amazon.com/vpc/latest/userguide/egress-only-internet-gateway.html IPV4 = NAT Instance/Gateway | 0.0.0.0 IPV6 = Egress-Only Internet Gateway | ::/0
upvoted 2 times
...
ablazleon
2 years, 2 months ago
Selected Answer: B
As Cyril said, it is needed an internet gw.
upvoted 1 times
...
Cyril_the_Squirl
2 years, 6 months ago
The answer is B. 1. https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Internet_Gateway.html (Internet access for default and nondefault VPCs) 2. Therefore, you can create an IPv6 subnet and attach it to the IGW for internet access. IPv6 addresses are globally unique therefore they are public by default...that is to say, they are publicly accessible by default. To protect your instances, you then create an egress-only-internet gateway. But for both ingress and egress traffic...with key being ingress...egress-only gateway is the wrong answer!!! The correct answer is B. Lab it up in your AWS console, it'll be fun I promise :-)
upvoted 1 times
...
TroyMcLure
2 years, 6 months ago
Correct Answer: D IPv6 doesn't need NAT, but requires an egress-only igw.
upvoted 2 times
...
RicardoD
2 years, 6 months ago
D is the answer IPV6 requires an egress-only on the public subnet, routing all IPV6 traffic to IGW and then 0.0.0.0/0
upvoted 1 times
...
HVarada
2 years, 6 months ago
Answer is "D"
upvoted 1 times
...
abhishek_m_86
2 years, 6 months ago
D. Route ::/0 traffic to an egress-only internet gateway
upvoted 2 times
...
awscert85
2 years, 6 months ago
B --access from the internet towards the VPC is prohibited. -- Ingress -- the Administrator is unable to connect to any of the domains that reside on the internet. -- Egress So needs both ingress and egress
upvoted 2 times
Cyril_the_Squirl
2 years, 6 months ago
You're correct. https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Internet_Gateway.html SECTION: Enable internet access SECTION: IP Addresses & NAT "...To enable communication over the internet for IPv6, your VPC and subnet must have an associated IPv6 CIDR block, and your instance must be assigned an IPv6 address from the range of the subnet. IPv6 addresses are globally unique, and therefore public by default..."
upvoted 1 times
...
...
Chirantan
2 years, 7 months ago
D is correct Ans
upvoted 1 times
...
Radhaghosh
2 years, 7 months ago
correct answer is D
upvoted 2 times
...
[Removed]
2 years, 7 months ago
Ans is D. Nat is for ipv4 egress gateway for ipv6
upvoted 1 times
...
learnwithaniket
2 years, 7 months ago
D is correct. "access from the internet towards the VPC is prohibited" That means egress-only...
upvoted 1 times
...
jackdryan
2 years, 7 months ago
I'll go with D
upvoted 1 times
...
MFDOOM
2 years, 7 months ago
D. Route ::/0 traffic to an egress-only internet gateway
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago