Amazon Exam ANS-C00 Topic 19 Question 37 Discussion

Actual exam question for Amazon's ANS-C00 exam

Question #: 37
Topic #: 19

An organization's Security team has a requirement that all data leaving its on-premises data center be encrypted at the network layer and use dedicated connectivity. There is also a requirement to centrally log all traffic flow in Amazon VPC environments. An AWS Direct Connect connection has been ordered to build out this design.

What steps should be taken to ensure that connectivity to AWS meets these security requirements? (Choose two.)

AProvision a public virtual interface on AWS Direct Connect and set up a VPN to each VPC.

BProvision a private virtual interface for each VPC connection.

CEnable VPC Flow Logs for each VPC.

DUse AWS KMS to encrypt traffic between on-premises and AWS.

EProvision a VPN connection to each VPC over the internet.
References:

Show Suggested Answer

Suggested Answer: A, C

by Garry at May 04, 2022, 04:29 PM

Limited Time Offer

25%

Off

Get Premium ANS-C00 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!