An organization is using a VPC endpoint for Amazon S3. When the security group rules for a set of instances were initially configured, access was restricted to allow traffic only to the IP addresses of the Amazon S3 API endpoints in the region from the published JSON file. The application was working properly, but now is logging a growing number of timeouts when connecting with Amazon S3. No internet gateway is configured for the VPC. Which solution will fix the connectivity failures with the LEAST amount of effort?
A) Create a Lambda function to update the security group based on AmazonIPSpaceChanged notifications.
B) Update the VPC routing to direct Amazon S3 prefix-list traffic to the VPC endpoint using the route table APIs.
C) Update the application server's outbound security group to use the prefix-list for Amazon S3 in the same region.
D) Create an additional VPC endpoint for Amazon S3 in the same route table to scale the concurrent connections to Amazon.
Correct Answer:
Verified
Q82: An organization wants to process sensitive information
Q83: You are building an application in AWS
Q84: Your company uses an NTP server to
Q85: All IP addresses within a 10.0.0.0/16 VPC
Q86: A Network Engineer needs to create a
Q88: A Network Engineer is provisioning a subnet
Q89: A network engineer is deploying an application
Q90: Your company has set up AWS Direct
Q91: An organization with a growing e-commerce presence
Q92: You need to set up an Amazon
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents