A company operates an application on Amazon EC2 instances within a VPC. A network engineer replaces self-managed NAT instances with a NAT gateway. After redirecting traffic from the self-managed NAT instances to the NAT gateway, users report connectivity issues. Upon investigation, the network engineer finds that connections to the application are timing out after about 6 minutes of inactivity. What steps should the network engineer take to address this problem?

Exam-Like

Check for increases in the IdleTimeoutCount Amazon CloudWatch metric for the NAT gateway. Configure TCP keepalive on the application EC2 instances.

Check for increases in the ErrorPortAllocation Amazon CloudWatch metric for the NAT gateway. Configure an HTTP timeout value on the application EC2 instances.

Check for increases in the PacketsDropCount Amazon CloudWatch metric for the NAT gateway. Configure an HTTPS timeout value on the application EC2 instances.

Check for decreases in the ActiveConnectionCount Amazon CloudWatch metric for the NAT gateway. Configure UDP keepalive on the application EC2 instances.

AWS Certified Advanced Networking - Specialty

Get started today

Comments