AmazonAmazon
DBS-C01 · Question #275
DBS-C01 Question #275: Real Exam Question with Answer & Explanation
The correct answer is B: Create a gateway VPC endpoint for DynamoDB to provide access to the table. https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/vpc-endpoints-
Submitted by klara.se· Mar 6, 2026Database Security
Question
A company uses AWS Lambda functions in a private subnet in a VPC to run application logic. The Lambda functions must not have access to the public internet. Additionally, all data communication must remain within the private network. As part of a new requirement, the application logic needs access to an Amazon DynamoDB table. What is the MOST secure way to meet this new requirement?
Options
- AProvision the DynamoDB table inside the same VPC that contains the Lambda functions
- BCreate a gateway VPC endpoint for DynamoDB to provide access to the table
- CUse a network ACL to only allow access to the DynamoDB table from the VPC
- DUse a security group to only allow access to the DynamoDB table from the VPC
Explanation
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/vpc-endpoints-
Topics
#DynamoDB#VPC endpoint#private networking#Lambda
Community Discussion
No community discussion yet for this question.