Answer-first summary for fast verification
Answer: Instruct the provider to establish a VPC endpoint and use AWS PrivateLink for secure access.
The correct answer is D. AWS PrivateLink allows you to access services hosted on AWS in a highly secure manner by keeping the data within the AWS network. By asking the provider to create a VPC endpoint for the target service and using AWS PrivateLink, the company ensures that the connectivity is private, restricted to the target service, and initiated from the company's VPC. VPC peering (Option A) and NAT gateway (Option C) do not provide the required security compliance of restricting the connectivity to a specific service. Option B, requesting a virtual private gateway, is not the most appropriate AWS service for this requirement.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company on AWS requires a secure, private connection to an external service within a provider's VPC, with connectivity restricted to the target service and initiated solely from the company's VPC. What is the appropriate solution?
A
Establish a VPC peering connection and configure routing for the target service.
B
Request a virtual private gateway creation by the provider and utilize AWS PrivateLink for the connection.
C
Implement a NAT gateway in the company's public subnet and set up routing to the target service.
D
Instruct the provider to establish a VPC endpoint and use AWS PrivateLink for secure access.