exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 750 discussion

A company operates an on-premises software-as-a-service (SaaS) solution that ingests several files daily. The company provides multiple public SFTP endpoints to its customers to facilitate the file transfers. The customers add the SFTP endpoint IP addresses to their firewall allow list for outbound traffic. Changes to the
SFTP endpoint IP addresses are not permitted.
The company wants to migrate the SaaS solution to AWS and decrease the operational overhead of the file transfer service.
Which solution meets these requirements?

  • A. Register the customer-owned block of IP addresses in the company's AWS account. Create Elastic IP addresses from the address pool and assign them to an AWS Transfer for SFTP endpoint. Use AWS Transfer to store the files in Amazon S3.
  • B. Add a subnet containing the customer-owned block of IP addresses to a VPC. Create Elastic IP addresses from the address pool and assign them to an Application Load Balancer (ALB). Launch EC2 instances hosting FTP services in an Auto Scaling group behind the ALB. Store the files in attached Amazon Elastic Block Store (Amazon EBS) volumes.
  • C. Register the customer-owned block of IP addresses with Amazon Route 53. Create alias records in Route 53 that point to a Network Load Balancer (NLB). Launch EC2 instances hosting FTP services in an Auto Scaling group behind the NLB. Store the files in Amazon S3.
  • D. Register the customer-owned block of IP addresses in the company's AWS account. Create Elastic IP addresses from the address pool and assign them to an Amazon S3 VPC endpoint. Enable SFTP support on the S3 bucket.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
miniso8153
Highly Voted 3 years, 2 months ago
I vote for A https://aws.amazon.com/premiumsupport/knowledge-center/sftp-enable-elastic-ip-addresses/
upvoted 21 times
sergioandreslq
3 years, 1 month ago
A: Bring your own IP addresses (BYOIP) You can bring part or all of your publicly routable IPv4 or IPv6 address range from your on-premises network to your AWS account. You continue to own the address range, but AWS advertises it on the internet by default. After you bring the address range to AWS, it appears in your AWS account as an address pool. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-byoip.html AWS Transfer for SFTP enables you to easily move your file transfer workloads that use the Secure Shell File Transfer Protocol (SFTP) to AWS without needing to modify your applications or manage any SFTP servers. https://aws.amazon.com/about-aws/whats-new/2018/11/aws-transfer-for-sftp-fully-managed-sftp-for-s3/
upvoted 5 times
...
...
BasselBuzz
Most Recent 1 year, 4 months ago
Selected Answer: A
AWS Transfer for SFTP endpoint
upvoted 1 times
...
AzureDP900
2 years, 12 months ago
I will go with A after reading the AWS docs mentioned by miniso8153
upvoted 1 times
...
cldy
2 years, 12 months ago
A. Register the customer-owned block of IP addresses in the companyג€™s AWS account. Create Elastic IP addresses from the address pool and assign them to an AWS Transfer for SFTP endpoint. Use AWS Transfer to store the files in Amazon S3.
upvoted 1 times
...
andylogan
3 years, 1 month ago
It's A with AWS Transfer for SFTP
upvoted 2 times
...
tgv
3 years, 1 month ago
AAA --- B: You cannot assign an Elastic IP to an Application Load Balancer C: You cannot register the customer-owned block of IP addresses with Amazon Route 53 D: Not sure if you can assign an IP to S3 VPC endpoint
upvoted 1 times
...
Kopa
3 years, 1 month ago
A for sure. The AWS Transfer Family provides fully managed support for file transfers directly into and out of Amazon S3 or Amazon EFS. With support for Secure File Transfer Protocol (SFTP), File Transfer Protocol over SSL (FTPS), and File Transfer Protocol (FTP), the AWS Transfer Family helps you seamlessly migrate your file transfer workflows to AWS by integrating with existing authentication systems, and providing DNS routing with Amazon Route 53 so nothing changes for your customers and partners, or their applications. With your data in Amazon S3 or Amazon EFS, you can use it with AWS services for processing, analytics, machine learning, archiving, as well as home directories and developer tools.
upvoted 4 times
student22
3 years, 1 month ago
A https://aws.amazon.com/aws-transfer-family/
upvoted 1 times
...
...
WhyIronMan
3 years, 1 month ago
I'll go for A
upvoted 1 times
...
vimgoru24
3 years, 1 month ago
It’s A
upvoted 1 times
...
mustpassla
3 years, 1 month ago
A for sure
upvoted 1 times
...
Waiweng
3 years, 2 months ago
it's A
upvoted 3 times
...
beebatov
3 years, 2 months ago
Answer: A COIP is registered with an AWS Account (Not Route 53) https://aws.amazon.com/about-aws/whats-new/2020/01/aws-transfer-for-sftp-supports-vpc-security-groups-and-elastic-ip-addresses/
upvoted 1 times
...
ExtHo
3 years, 2 months ago
C no due to NLB A,D can be valid in first view but D can be ruled out due to Amazon S3 VPC endpoint as the main usage is access to S3 without internet (AWS resources in Private Subnets) that leaves A is only valid option what i think.
upvoted 3 times
...
gsw
3 years, 2 months ago
could be C?
upvoted 1 times
digimaniac
3 years, 2 months ago
watch out for operational overhead cue in the question. host FTP will increase op. overhead
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago