nerdexam
Cisco

300-440 · Question #45

300-440 Question #45: Real Exam Question with Answer & Explanation

The correct answer is A. bucket policies C. specific routing. Bucket policies: These are crucial for controlling access to the S3 buckets, ensuring that data is accessed only under specific, secure conditions (e.g., source IP, encryption status, etc.). They can enforce encryption for data both in transit and at rest. Specific routing: This

Question

An engineer is implementing a highly secure multitier application in AWS that includes S3. RDS, and several additional private links. Which two features are required to keep the traffic safe? (Choose two.)

Options

  • Abucket policies
  • Bgateway load balancers
  • Cspecific routing
  • DEC2 super policies
  • EVPC peering

Explanation

Bucket policies: These are crucial for controlling access to the S3 buckets, ensuring that data is accessed only under specific, secure conditions (e.g., source IP, encryption status, etc.). They can enforce encryption for data both in transit and at rest. Specific routing: This ensures that all traffic between application tiers (e.g., between EC2 instances and RDS, or to S3 via private links/endpoints) remains within the secure private network, preventing exposure to the public internet. This often involves using VPC endpoints and configuring route tables appropriately.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-440 Practice