AWS Certified Advanced Networking - Specialty
Get started today
Ultimate access to all questions.
A company’s data center is linked to a single AWS Region via an AWS Direct Connect dedicated connection, with a single VPC in that Region. The company stores all application logs locally in the data center and must retain them for 7 years. The company plans to copy all application logs to an Amazon S3 bucket.
What solution will fulfill these requirements?
A company’s data center is linked to a single AWS Region via an AWS Direct Connect dedicated connection, with a single VPC in that Region. The company stores all application logs locally in the data center and must retain them for 7 years. The company plans to copy all application logs to an Amazon S3 bucket.
What solution will fulfill these requirements?
Explanation:
To meet the company's requirements of copying all application logs to an Amazon S3 bucket while using AWS Direct Connect, the solution must ensure secure and efficient data transfer. A private VIF (Virtual Interface) on the Direct Connect connection is necessary because it allows private connectivity to the VPC, ensuring that the data transfer is secure. An Amazon S3 gateway endpoint in the VPC is the correct choice because it provides a reliable and scalable way to access S3 from within the VPC without requiring an internet gateway or NAT device, and it does not incur data transfer costs for data transferred between the VPC and S3. Therefore, the correct solution is to create a private VIF on the Direct Connect connection and create an Amazon S3 gateway endpoint in the VPC.