How can a solutions architect secure a VPC hosting EC2 instances with sensitive data, ensuring they can only access approved third-party software repositories on the internet?

Exam-Like

By updating the private subnet's route table to an AWS Network Firewall and setting domain list rulegroups.

60.0%

By setting up an AWS WAF web ACL with custom rules based on IP address ranges.

10.0%

By applying strict inbound security group rules and configuring outbound rules for authorized URLs.

20.0%

By using an Application Load Balancer with a URL-based rule listener for EC2 instances' outbound internet access.

10.0%

AWS Certified Solutions Architect - Associate