SAP-C02 Study Assistant

SAP-C02 Question 490

Route 53 VPC Config

Question

A company requires that all internal application connectivity use private IP addresses. To facilitate this policy, a solutions architect has created interface endpoints to connect to AWS Public services. Upon testing, the solutions architect notices that the service names are resolving to public IP addresses, and that internal services cannot connect to the interface endpoints. Which step should the solutions architect take to resolve this issue?

Options

A. Update the subnet route table with a route to the interface endpoint.

B. Enable the private DNS option on the VPC attributes.

C. Configure the security group on the interface endpoint to allow connectivity to the AWS services.

D. Configure an Amazon Route 53 private hosted zone with a conditional forwarder for the internal application.

Answer

B

Explanation

Correct answer: B Explanation: The best answer is B. Correct option: B. Enable the private DNS option on the VPC attributes. Why this is correct: This option most directly satisfies the hard requirements in the question....

Log in to view the full explanation