ANS-C01 · Question #64
ANS-C01 Question #64: Real Exam Question with Answer & Explanation
Sign in or unlock ANS-C01 to reveal the answer and full explanation for question #64. The question stem and answer options stay visible for context.
Question
A company plans to deploy a two-tier web application to a new VPC in a single AWS Region. The company has configured the VPC with an internet gateway and four subnets. Two of the subnets are public and have default routes that point to the internet gateway. Two of the subnets are private and share a route table that does not have a default route. The application will run on a set of Amazon EC2 instances that will be deployed behind an external Application Load Balancer. The EC2 instances must not be directly accessible from the internet. The application will use an Amazon S3 bucket in the same Region to store data. The application will invoke S3 GET API operations and S3 PUT API operations from the EC2 instances. A network engineer must design a VPC architecture that minimizes data transfer cost. Which solution will meet these requirements?
Options
- ADeploy the EC2 instances in the public subnets. Create an S3 interface endpoint in the VPC.
- BDeploy the EC2 instances in the private subnets. Create a NAT gateway in the VPC. Create
- CDeploy the EC2 instances in the private subnets. Create an S3 gateway endpoint in the
- DDeploy the EC2 instances in the private subnets. Create an S3 interface endpoint in the VPC.
Unlock ANS-C01 to see the answer
You've previewed enough free ANS-C01 questions. Unlock ANS-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.