A database administrator is reviewing the deployment of an application that uses Amazon DynamoDB. A fleet of Amazon EC2 application instances accesses the database. The database administrator notices that EC2 instances are using public IP addresses to access the database and that the database is available to the internet. Company policy requires that all corporate data must be accessed privately and that external access from the internet is not allowed. Which combination of steps will ensure that the DynamoDB database meets these requirements? (Choose two.)

Topic #: - All AWS Certified Database - Specialty Questions

A. Configure the DynamoDB security group and network ACLs to block external access.
B. Create an AWS PrivateLink VPC endpoint for DynamoDUpdate the VPC route table.
C. Create a gateway VPC endpoint for DynamoDB. Update the VPC route table.
D. Provision a NAT gateway to access DynamoDB. Update the VPC route table.
E. Use the aws:sourceVpce condition for all the IAM roles that provision access to the table.

- Awsexamhub website is not related to, affiliated with, endorsed or authorized by Amazon.
- Trademarks, certification & product names are used for reference only and belong to Amazon.

Suggested Answer:

Share this post

Join the Discussion