ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Machine Learning - Specialty All Questions

View all questions & answers for the AWS Certified Machine Learning - Specialty exam
Go to Exam

Exam AWS Certified Machine Learning - Specialty topic 1 question 280 discussion

Exam question from Amazon's AWS Certified Machine Learning - Specialty
Question #: 280
Topic #: 1
[All AWS Certified Machine Learning - Specialty Questions]

A company plans to build a custom natural language processing (NLP) model to classify and prioritize user feedback. The company hosts the data and all machine learning (ML) infrastructure in the AWS Cloud. The ML team works from the company's office, which has an IPsec VPN connection to one VPC in the AWS Cloud.

The company has set both the enableDnsHostnames attribute and the enableDnsSupport attribute of the VPC to true. The company's DNS resolvers point to the VPC DNS. The company does not allow the ML team to access Amazon SageMaker notebooks through connections that use the public internet. The connection must stay within a private network and within the AWS internal network.

Which solution will meet these requirements with the LEAST development effort?

  • A. Create a VPC interface endpoint for the SageMaker notebook in the VPC. Access the notebook through a VPN connection and the VPC endpoint.
  • B. Create a bastion host by using Amazon EC2 in a public subnet within the VPC. Log in to the bastion host through a VPN connection. Access the SageMaker notebook from the bastion host.
  • C. Create a bastion host by using Amazon EC2 in a private subnet within the VPC with a NAT gateway. Log in to the bastion host through a VPN connection. Access the SageMaker notebook from the bastion host.
  • D. Create a NAT gateway in the VPC. Access the SageMaker notebook HTTPS endpoint through a VPN connection and the NAT gateway.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by xiaoeason at Dec. 19, 2023, 2:09 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Chiquitabandita
10 months ago
Selected Answer: A
bastion host / is an outdated method
upvoted 1 times
...
AIWave
1 year, 1 month ago
Selected Answer: A
Since the connection is over IPSec VPN and internet access is prohibited, NAT gateway and Bastian hosts are unnecessary eliminating B, C, D. Also, traffic should not leave AWS network between services so sagemaker notebook VPC endpoint is needed
upvoted 1 times
...
vkbajoria
1 year, 1 month ago
Selected Answer: A
A most effective solution
upvoted 1 times
...
taustin2
1 year, 4 months ago
Selected Answer: A
A - Never choose bastion host. Other answers don't make sense.
upvoted 1 times
...
xiaoeason
1 year, 4 months ago
Selected Answer: A
A has the least development cost comparing with B
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago