A banking company operates its public mobile banking stack on AWS within a VPC containing private and public subnets, using IPv4 networking without IPv6 support. To integrate a third-party API that requires IPv6, a network engineer enables IPv6 in the VPC and private subnets. The company mandates that IPv6 traffic must not originate from the public internet and that all IPv6 connectivity must be initiated by the company's servers.

What solution will fulfill these requirements?

Exam-Like

Create an internet gateway and a NAT gateway in the VPC. Add a route to the existing subnet route tables to point IPv6 traffic to the NAT gateway.

0.0%

Create an internet gateway and a NAT instance in the VPC. Add a route to the existing subnet route tables to point IPv6 traffic to the NAT instance.

0.0%

Create an egress-only Internet gateway in the VPC. Add a route to the existing subnet route tables to point IPv6 traffic to the egress-only internet gateway.

100.0%

Create an egress-only internet gateway in the VPC. Configure a security group that denies all inbound traffic. Associate the security group with the egress-only internet gateway.

0.0%

AWS Certified Advanced Networking - Specialty

Get started today

Comments