ExamGecko
Home / Amazon / SAA-C03 / Practice Test 6
Ask Question

Amazon SAA-C03 Practice Test 6

Add to Whishlist
00:00:00
Show Answer
Report Issue   Restart test

Question 1 / 40

An application runs on Amazon EC2 instances in private subnets. The application needs to access an Amazon DynamoDB table. What is the MOST secure way to access the table while ensuring that the traffic does not leave the AWS network?

Use a VPC endpoint for DynamoDB.
Use a VPC endpoint for DynamoDB.
Use a NAT gateway in a public subnet.
Use a NAT gateway in a public subnet.
Use a NAT instance in a private subnet.
Use a NAT instance in a private subnet.
Use the internet gateway attached to the VPC.
Use the internet gateway attached to the VPC.
Comment (0)
Suggested answer: A
Explanation:

https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/vpc-endpointsdynamodb.html

A VPC endpoint for DynamoDB enables Amazon EC2 instances in your VPC to use their private IP addresses to access DynamoDB with no exposure to the public internet. Your EC2 instances do not require public IP addresses, and you don't need an internet gateway, a NAT device, or a virtual private gateway in your VPC. You use endpoint policies to control access to DynamoDB. Traffic between your VPC and the AWS service does not leave the Amazon network.

asked 16/09/2024
Ayyaz Rehan Ikram
32 questions


Amazon SAA-C03 Practice Tests