You have created a solution that requires Internet facing web services that you host on an...
Fantastic news! We've Found the answer you've been seeking!
Question:
Transcribed Image Text:
You have created a solution that requires Internet facing web services that you host on an EC2 instance. The users are complaining that they cannot access your service with a connection time out issue. You have confirmed the EC2 instance can access and ping to Internet hostnames and addresses. Which EC2 component should you check first? Security Groups User Data Subnet Route Tables Internet Gateway What are the required components of an IAM policy? effect, api, resource action, principal, resource source, destination, resource effect, action, resource Examine the policy below. A firewall administrator needs to only be able to modify ingress and egress rules of SecurityGroups within a VPC. From a security context, classify the policy based on the answer selections. { "Version": "2012-10-17", "Statement": [ { "Sid": "Stmt1624564156721", "Action": "ec2:*", "Effect": "Allow", "Resource": }, { ] H*" "Sid": "Stmt1624564217778", "Action":[ } "ec2:AuthorizeSecurityGroupEgress", "ec2:AuthorizeSecurityGroupIngress", "ec2: DescribeSecurity Group References", "ec2: DescribeSecurity Groups", "ec2: DescribeVpcs" ], "Effect": "Allow", "Resource": "* Not enough permissions Not the correct permissions The correct permissions Overly Permissive Examine the reference architecture below. What are the disadvantages from an availability and scalability perspective that you see? VPC Cluster Private Subnet Availability Zone Single AZ, Using Public Subnet Single AZ, No ELB Single AZ, Using S3 instead of EBS Instance Public Subnet Using Private Subnet, NAT instance NAT Instance Internet Gateway S3 What AWS service or credential types should I use if I wish to have on premise corporate users connect to AWS services from Active Directory? AWS IAM User AWS Cognito AWS SSO AWS Access and Secret Key You have a requirement to have Internet connectivity for an EC2 instance. You do not need the Internet to access services on the instance; only for updating patching and downloading software. The update repositories you download packages from are hosted only on IPv6 addresses. Which pattern is required to meet the needs above? Egress Only Gateway in the Private Subnet NAT Gateway in the Public Subnet Egress Only Gateway in the Public Subnet NAT Gateway in the Private Subnet For VPC-A, VPC-B, VPC-C, VPC-D VPC-A has a peering connection with VPC-B VPC-B has a peering connection with VPC-C VPC-C has a peering connection with VPC-D Does VPC-A have network connectivity with VPC-D? Yes, but you have to change the routing table Yes, but you have to create a transitive gateway No, you will to create another peering connection No, because peering connections are not network connectivity You have created a solution that requires Internet facing web services that you host on an EC2 instance. The users are complaining that they cannot access your service with a connection time out issue. You have confirmed the EC2 instance can access and ping to Internet hostnames and addresses. Which EC2 component should you check first? Security Groups User Data Subnet Route Tables Internet Gateway What are the required components of an IAM policy? effect, api, resource action, principal, resource source, destination, resource effect, action, resource Examine the policy below. A firewall administrator needs to only be able to modify ingress and egress rules of SecurityGroups within a VPC. From a security context, classify the policy based on the answer selections. { "Version": "2012-10-17", "Statement": [ { "Sid": "Stmt1624564156721", "Action": "ec2:*", "Effect": "Allow", "Resource": }, { ] H*" "Sid": "Stmt1624564217778", "Action":[ } "ec2:AuthorizeSecurityGroupEgress", "ec2:AuthorizeSecurityGroupIngress", "ec2: DescribeSecurity Group References", "ec2: DescribeSecurity Groups", "ec2: DescribeVpcs" ], "Effect": "Allow", "Resource": "* Not enough permissions Not the correct permissions The correct permissions Overly Permissive Examine the reference architecture below. What are the disadvantages from an availability and scalability perspective that you see? VPC Cluster Private Subnet Availability Zone Single AZ, Using Public Subnet Single AZ, No ELB Single AZ, Using S3 instead of EBS Instance Public Subnet Using Private Subnet, NAT instance NAT Instance Internet Gateway S3 What AWS service or credential types should I use if I wish to have on premise corporate users connect to AWS services from Active Directory? AWS IAM User AWS Cognito AWS SSO AWS Access and Secret Key You have a requirement to have Internet connectivity for an EC2 instance. You do not need the Internet to access services on the instance; only for updating patching and downloading software. The update repositories you download packages from are hosted only on IPv6 addresses. Which pattern is required to meet the needs above? Egress Only Gateway in the Private Subnet NAT Gateway in the Public Subnet Egress Only Gateway in the Public Subnet NAT Gateway in the Private Subnet For VPC-A, VPC-B, VPC-C, VPC-D VPC-A has a peering connection with VPC-B VPC-B has a peering connection with VPC-C VPC-C has a peering connection with VPC-D Does VPC-A have network connectivity with VPC-D? Yes, but you have to change the routing table Yes, but you have to create a transitive gateway No, you will to create another peering connection No, because peering connections are not network connectivity
Expert Answer:
Related Book For
Database Systems Design Implementation and Management
ISBN: 978-1337627900
13th edition
Authors: Carlos Coronel, Steven Morris
Posted Date:
Students also viewed these computer network questions
-
Planning is one of the most important management functions in any business. A front office managers first step in planning should involve determine the departments goals. Planning also includes...
-
Design a Java class that represents a cache with a fixed size. It should support operations like add, retrieve, and remove, and it should evict the least recently used item when it reaches capacity.
-
A nutritionist at the Food and Drug Administration is studying the effects of cereal marketing on family meal choices. In particular, she would like to understand how cereal manufacturers market...
-
How do you determine the level of significance or p-value for this particular problem? H0: Non-monetary benefits do not impact employee satisfaction as much as annual pay increases would. H1: There...
-
For 2010, Sampsell Inc. computed its annual postretirement expense as $240,900. Sampsells contribution to the plan during 2010 was $180,000. Prepare Sampsells 2010 entry to record postretirement...
-
Recall Exercise 1 of Chapter 4. The MD, Mr. G.C. Gupta, having understood the gist of the conceptual framework of financial statements, is now interested in the understanding of GAAPs, because of...
-
SuperShades operates a kiosk at the local mall, selling sunglasses for $ 20 each. SuperShades currently pays $ 800 a month to rent the space and pays two full-time employees to each work 160 hours a...
-
List any four applications of KNN. Explain with Example
-
Data has come in from the collection effort. Like many initiatives carried out in business, the data provided to your team came from another department associated with the strategic planning arm of...
-
A company had the following income statement for the previous reporting period ( earnings before interest and taxes ) : Revenue $ 2 8 , 0 0 0 , 0 0 0 COGS $ 1 6 , 9 3 2 , 4 0 9 SG&A $ 6 , 5 0 3 , 1 2...
-
1. Breakspear Co purchased 600,000 of the voting equity shares of Fleet Co when the value of the non-controlling interest in Fleet Co is 150,000. The following information relates to Fleet at the...
-
For each of the five questions, provide the following: List the research question Identify the variables presented in the question and describe each variable's scale of measurement (nominal, ordinal,...
-
Your paper should: 1. State the issue you've identified 2. Explain why you consider it a global citizenship and equity issue 3. Explain a specific solution to solve the problem (use the pillars used...
-
A system is in the state ). A measurement of a physical quantity is to be made; the corresponding Hermitian operator is . State the postulate that gives the prob- ability of obtaining the possible...
-
The commercial activity of "Bank of America" begins on March 1, 2019 with a capital of $ 200,000.- divided into 20,000 shares of $ 10 each, whose partners Christina Paul and Charles prinston agree to...
-
Solve each equation. x 3 - 6x 2 = -8x
-
What is metadata?
-
Based on the ER model shown in Figure P11.7 and on the query shown after the figure. Figure P11.7: Should you create an index? Why or why not? INVOICE CUSTOMER LINE PK Cus CODE PK INV_NUMBER PK,FK1...
-
Based on the following query: SELECT V_CODE, V_NAME, V_CONTACT, V_STATE FROM VENDOR WHERE V_STATE = TN ORDER BY V_NAME; Assume that 10,000 vendors are distributed as shown in Table P11.18. What...
-
Why do the assets need to be revalued in these cases? The business has not been sold.
-
The shown partners have always shared profits and losses in the ratio: Holt 4; Stott 2: Young 1. From 1 January the assets were to be revalued as the profit sharing ratios are to be altered soon. The...
-
When you were looking at goodwill in the previous chapter, you were interested in the difference between the amount received and the value of net assets. Why do we consider only the assets when there...
Study smarter with the SolutionInn App