ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C02 topic 1 question 466 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C02
Question #: 466
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C02 Questions]

A company runs its two-tier ecommerce website on AWS. The web tier consists of a load balancer that sends traffic to Amazon EC2 instances. The database tier uses an Amazon RDS DB instance. The EC2 instances and the RDS DB instance should not be exposed to the public internet. The EC2 instances require internet access to complete payment processing of orders through a third-party web service. The application must be highly available.
Which combination of configuration options will meet these requirements? (Choose two.)

  • A. Use an Auto Scaling group to launch the EC2 instances in private subnets. Deploy an RDS Multi-AZ DB instance in private subnets.
  • B. Configure a VPC with two private subnets and two NAT gateways across two Availability Zones. Deploy an Application Load Balancer in the private subnets.
  • C. Use an Auto Scaling group to launch the EC2 instances in public subnets across two Availability Zones. Deploy an RDS Multi-AZ DB instance in private subnets.
  • D. Configure a VPC with one public subnet, one private subnet, and two NAT gateways across two Availability Zones. Deploy an Application Load Balancer in the public subnet.
  • E. Configure a VPC with two public subnets, two private subnets, and two NAT gateways across two Availability Zones. Deploy an Application Load Balancer in the public subnets.
Show Suggested Answer Hide Answer
Suggested Answer: AE 🗳️
by suhas16c at Aug. 20, 2021, 8:30 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
suhas16c
Highly Voted 3 years, 8 months ago
A&E is my choice
upvoted 39 times
Alfio
3 years, 7 months ago
"E" for request of network segmentation. "A" for highly available The two options together offer the indicated requirements
upvoted 15 times
...
...
Hizumi
Highly Voted 3 years, 8 months ago
Application has to be highly available while the instance and database should not be exposed to the public internet, but the instances still requires access to the internet. NAT gateway has to be deployed in public subnets in this case while instances and database remain in private subnets in the VPC, therefore answer is (A) and (E). https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html If the instances did not require access to the internet, then the answer could have been (B) to use a private NAT gateway and keep it in the private subnets to communicate only to the VPCs.
upvoted 13 times
Hizumi
3 years, 7 months ago
https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Scenario2.html
upvoted 2 times
...
...
Jobair
Most Recent 2 years, 7 months ago
Selected Answer: AE
Explanation from StackOverflow "Case 3: Two public subnets, two private subnets, two NAT Gateways - The NAT Gateway goes into both public subnets (Public-Subnet-A, Public-Subnet-B) - The EC2 instances are launched in private subnets across two AZs (Private-Subnet-A, Private-Subnet-B) - The Route Table Private-Subnet-A points to the NAT Gateway in Public-Subnet-A - The Route Table Private-Subnet-B points to the NAT Gateway in Public-Subnet-B" https://stackoverflow.com/questions/59525573/can-a-single-nat-gateway-span-across-multiple-az And we all agree on A :)
upvoted 3 times
...
Blaizeanthonnette
2 years, 11 months ago
AE In the AWS docs 'Application Load Balancer Getting Started', it states the following: Before you begin: Decide which two Availability Zones you will use for your EC2 instances. Configure your virtual private cloud (VPC) with at least one public subnet in each of these Availability Zones. These public subnets are used to configure the load balancer. You can launch your EC2 instances in other subnets of these Availability Zones instead.
upvoted 1 times
...
mostafaHussien
2 years, 12 months ago
Selected Answer: AE
A&E is my choice
upvoted 1 times
...
Ivanyan
3 years, 3 months ago
Selected Answer: AE
A & E is the correct Answer
upvoted 2 times
...
SamHan
3 years, 3 months ago
Selected Answer: AE
NAT gateway needs public subnet
upvoted 1 times
...
tinyshare
3 years, 6 months ago
A+E ELB and NAT in public subnets EC2 and RDS in private subnets Two subnets one for each AZ in one VPC One VPC for one region and across Availability Zones in that region
upvoted 2 times
...
Jonfernz
3 years, 7 months ago
Here are the steps. First you configure E and then you setup A. E ensures high availability. The public subnets with the ALB connects the VPC to the internet for both the AZs. Then private subnets are for the instances - A takes cares of this.
upvoted 5 times
...
Jamati
3 years, 7 months ago
Answer is A + E
upvoted 5 times
...
Jeyakumar
3 years, 7 months ago
A & E is the correct Answer
upvoted 6 times
...
weegoot
3 years, 7 months ago
Should be A,B
upvoted 2 times
...
simiramis221
3 years, 7 months ago
B & D for me, but i am not sure :D
upvoted 2 times
SimoneP
3 years, 3 months ago
not D because the subnet cannot span into multiple AZ https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Subnets.html
upvoted 1 times
...
...
10minute
3 years, 8 months ago
Req. EC2 and RDS should not be exposed to public internet -> look for private subnets A) and B) CORRECT
upvoted 2 times
Davidrjallen
3 years, 7 months ago
But NAT gateway needs to be in public subnet, so it’s A&E
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel