SCS-C02 · Question #257
SCS-C02 Question #257: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #257. The question stem and answer options stay visible for context.
Question
A security engineer has designed a VPC to segment private traffic from public traffic. The VPC includes two Availability Zones. The security engineer has provisioned each Availability Zone with one private subnet and one public subnet. The security engineer has created three route tables for use with the environment. One route table is for the public subnets, and two route tables are for the private subnets (one route table for the private subnet in each Availability Zone). The security engineer discovers that all four subnets are attempting to route traffic out through the internet gateway that is attached to the VPC. Which combination of steps should the security engineer take to remediate this scenario? (Choose two.)
Options
- AVerify that a NAT gateway has been provisioned in the public subnet in each Availability Zone.
- BVerify that a NAT gateway has been provisioned in the private subnet in each Availability Zone.
- CModify the route tables that are associated with each of the public subnets. Create a new route
- DModify the route tables that are associated with each of the private subnets Create a new route
- EModify the route tables that are associated with each of the private subnets. Create a new route
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.