Update the security group associated with enieto permit inbound traffic. Update the security group associated with enieto permit outbound traffic.
Update the network ACL associated with the subnet to permit inbound traffic. Update the network ACL associated with the subnet to permit outbound traffic.
What command would you use? You must use an MTU of The company wants to ensure that this bucket can be accessed only from the VPC where the application resides.
Which changes should a network engineer make to the architecture to meet these requirements? Configure the S3 security group to allow only the application instances to access the bucket. Configure an S3 bucket policy with a condition to allow access only from the VPC endpoint. Configure an S3 bucket policy, and use an IP address condition to restrict access to the bucket. Create a new IAM role for the EC2 instances that provides access to the S3 bucket, and assign the role to the application instances.
Configure an S3 bucket policy to allow access only from the role. Correct Answer: B. This subnet resides on the VPC What step should you take to accomplish this? Configure your DNS server to forward queries for the private hosted zone to The company runs multiple versions of Linux and Windows systems. Where should you apply the NTP server update to propagate information without rebooting your running instances? You currently use a VPN to access your compute infrastructure, but you require more reliability for your static files as you are offloading all of your important data to AWS.
What is your best course of action while keeping costs low? Create an S3 endpoint and create a route to the endpoint prefix list for your VPN to allow access to your S3 resources.
Create two Direct Connect connections. Each connected to a Private VIF to ensure maximum resiliency. Which of the following actions will require the LEAST amount of configuration overhead on the customer router? Configure private virtual interfaces for the VPC resources and a public virtual interface for Amazon S3. This is distinct from the describe-compliance-by-config-rule command, which gives the compliance state of each rule in AWS Config.
The company must be able to edit the application code during the migration phase. One application is a traditional three-tier application, consisting of a web presentation tier, an application tier, and a database tier. The external calling client applications need their sessions to remain sticky to both the web and application nodes that they initially connect to.
Which load balancing solution would allow the web and application tiers to scale horizontally independent from one another other? Set session stickiness on both, but update the application code to create an application-controlled cookie on the Classic Load Balancer. Use an Application Load Balancer at both the web and application tiers, setting session stickiness at the target group level for both tiers. Deploy a web node and an application node as separate containers on the same host, using task linking to create a relationship between the pair.
Add an Application Load Balancer with session stickiness in front of all web node containers. Topic 3. Topic 4. Topic 5. Topic 6. Topic 7. Topic 8. Topic 9. Topic Display mode Display replies flat, with oldest first Display replies flat, with newest first Display replies in threaded form Display replies in nested form.
Permalink Reply. Jump to Residency 2. Data retention summary.
0コメント