exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C03 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C03 exam

Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 835 discussion

A company is expanding a secure on-premises network to the AWS Cloud by using an AWS Direct Connect connection. The on-premises network has no direct internet access. An application that runs on the on-premises network needs to use an Amazon S3 bucket.

Which solution will meet these requirements MOST cost-effectively?

  • A. Create a public virtual interface (VIF). Route the AWS traffic over the public VIF.
  • B. Create a VPC and a NAT gateway. Route the AWS traffic from the on-premises network to the NAT gateway.
  • C. Create a VPC and an Amazon S3 interface endpoint. Route the AWS traffic from the on-premises network to the S3 interface endpoint.
  • D. Create a VPC peering connection between the on-premises network and Direct Connect. Route the AWS traffic over the peering connection.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
0c21057
1 week, 4 days ago
Selected Answer: A
AWS Direct Connect links your internal network to an AWS Direct Connect location over a standard Ethernet fiber-optic cable. One end of the cable is connected to your router, and the other to an AWS Direct Connect router. With this connection, you can create virtual interfaces directly to public AWS services (for example, to Amazon S3) or to Amazon VPC, bypassing internet service providers in your network path. An AWS Direct Connect location provides access to AWS in the Region with which it is associated. You can use a single connection in a public Region or AWS GovCloud (US) to access public AWS services in all other public Regions.
upvoted 1 times
...
Salilgen
3 months, 3 weeks ago
Selected Answer: A
https://aws.amazon.com/blogs/networking-and-content-delivery/optimizing-amazon-s3-data-transfers-over-direct-connect/
upvoted 1 times
...
LeonSauveterre
3 months, 4 weeks ago
Selected Answer: C
A - Public VIFs route traffic over the public internet, but on-premises network has no direct internet access. B - NAT gateways provide internet access for resources within a VPC, but, again, on-premises network has no direct internet access. C - The traffic stays within AWS and the Direct Connect connection, ensuring security and compliance with the no-internet requirement. Also, this is cost-effective because it avoids the need for additional NAT gateways or public VIFs. D - Peering connections don't even support access to AWS public services like S3.
upvoted 3 times
...
EllenLiu
4 months ago
Selected Answer: A
public VIF allows on-premises networks to access AWS public services, like S3 it eliminates the need for internet access & interface endpoints while being cost-effective
upvoted 2 times
EllenLiu
4 months ago
https://aws.amazon.com/privatelink/pricing/
upvoted 1 times
...
...
AMEJack
5 months ago
Selected Answer: A
Option A is the correct answer: 1) I need to connect to public services only, thus public VIF will be enough. 2) Interface endpoints is charged per hour, not cost effective.
upvoted 2 times
...
Scheldon
10 months, 2 weeks ago
Selected Answer: C
AnswerC Amazon S3 interface endpoint seems to be the best and only option as we are forced to use Private IP addressation. Interface endpoints for Amazon S3 Your network traffic remains on the AWS network. Use private IP addresses from your VPC to access Amazon S3 Require endpoint-specific Amazon S3 DNS names Allow access from on premises Allow access from a VPC in another AWS Region by using VPC peering or AWS Transit Gateway https://docs.aws.amazon.com/AmazonS3/latest/userguide/privatelink-interface-endpoints.html#types-of-vpc-endpoints-for-s3
upvoted 4 times
...
0bdf3af
11 months, 1 week ago
A. https://repost.aws/knowledge-center/s3-bucket-access-direct-connect
upvoted 1 times
elmyth
7 months, 2 weeks ago
This article says "Use a private IP address over Direct Connect (with an interface VPC endpoint)" - C
upvoted 3 times
...
...
0bdf3af
11 months, 1 week ago
A. public VIF is the way you can connect on-premise with S3 via DirectConnect
upvoted 1 times
...
waldirlsantos
1 year ago
Selected Answer: C
B Need internet A,D doesn't conect to the s3 IMO, C is the solution for this question.
upvoted 4 times
...
TruthWS
1 year, 1 month ago
Option C
upvoted 2 times
...
Kaula
1 year, 1 month ago
Selected Answer: C
https://docs.aws.amazon.com/AmazonS3/latest/userguide/privatelink-interface-endpoints.html
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago