AWS Certified Cloud Practitioner
Get started today
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
A company is running Amazon EC2 instances in a private subnet in a VPC. Which AWS service or feature can provide the EC2 instances with network connections to the internet?
Real Exam
Community
RRitesh
A
Gateway endpoint
B
NAT gateway
C
Network Load Balancer
D
Amazon Route 53
Explanation:
Explanation
NAT Gateway is the correct answer because:
-
NAT Gateway allows instances in a private subnet to connect to the internet or other AWS services, while preventing the internet from initiating connections with those instances
-
Private subnets don't have direct internet access through Internet Gateways
-
Gateway endpoints (VPC endpoints) provide private connectivity to AWS services like S3 and DynamoDB, but not general internet access
-
Network Load Balancer distributes traffic but doesn't provide internet connectivity for private instances
-
Amazon Route 53 is a DNS service, not a networking service that provides internet connectivity
Key Points:
-
NAT Gateway acts as a bridge between private subnets and the internet
-
It performs Network Address Translation (NAT)
-
Instances in private subnets can initiate outbound connections but cannot receive inbound connections from the internet
-
This maintains security while enabling necessary internet access for updates, downloads, etc.
Comments
Loading comments...