Answer-first summary for fast verification
Answer: Form three private subnets in the Neptune VPC and channel internet traffic through a NAT gateway. Position the Lambda functions in these freshly created private subnets., Create three private subnets in the Neptune VPC. Install the Lambda functions in these newly formed isolated subnets. Establish a VPC endpoint for DynamoDB and direct DynamoDB traffic to this VPC endpoint.
The correct answers are B and E. AWS Lambda functions need to be deployed within the same VPC as the Amazon Neptune DB cluster for direct access due to Neptune’s VPC constraints. Option B is correct because it involves creating private subnets in the Neptune VPC and allows the Lambda functions to egress to the internet through a NAT gateway. Option E is also correct as it involves creating private subnets in the Neptune VPC for the Lambda functions, and leveraging a VPC endpoint specifically for DynamoDB to route DynamoDB traffic, keeping the traffic within the AWS network and providing better security and performance.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company is operating a serverless application composed of multiple AWS Lambda functions and Amazon DynamoDB tables. They have developed new features that necessitate the Lambda functions to interact with an Amazon Neptune DB cluster. This Neptune DB cluster is situated within three subnets of a VPC. What solutions enable the Lambda functions to access both the Neptune DB cluster and the DynamoDB tables? (Select two options.)
A
Establish three public subnets in the Neptune VPC and direct traffic via an internet gateway. Deploy the Lambda functions within these newly created public subnets.
B
Form three private subnets in the Neptune VPC and channel internet traffic through a NAT gateway. Position the Lambda functions in these freshly created private subnets.
C
Locate the Lambda functions outside the VPC. Modify the Neptune security group to permit access from the IP ranges associated with the Lambda functions.
D
Place the Lambda functions outside the VPC. Generate a VPC endpoint for the Neptune database, allowing the Lambda functions to connect to Neptune via this VPC endpoint.
E
Create three private subnets in the Neptune VPC. Install the Lambda functions in these newly formed isolated subnets. Establish a VPC endpoint for DynamoDB and direct DynamoDB traffic to this VPC endpoint.