A SysOps Administrator must remove public IP addresses from all Amazon EC2 instances to prevent exposure to the internet. However, many corporate applications running on those EC2 instances need to access Amazon S3 buckets. The Administrator is tasked with allowing the EC2 instances to continue to access the S3 buckets.
Which solutions can be used? (Choose two.)

A. Deploy a NAT gateway, and configure the route tables accordingly in the VPC where the EC2 instances are running. B. Modify the network ACLs with private IP addresses in the routes to connect to Amazon S3. C. Modify the security groups on the EC2 instances with private IP addresses in the routes to connect to Amazon S3. D. Set up flaws Direct Connect, and configure a virtual interface between the EC2 instances and the S3 buckets. E. Set up a VPC endpoint in the VPC where the EC2 instances are running, and configure the route tables accordingly. Correct Answer: AE This question is in SOA-C01 AWS Certified SysOps Administrator – Associate Exam For getting AWS Certified SysOps Administrator – Associate Certificate

Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Amazon.
Trademarks, certification & product names are used for reference only and belong to Amazon.
The website does not contain actual questions and answers from Amazon's Certification Exam.