Which solution will meet these requirements?

A company has a multi-tier web application.The application’s internal service components are deployed on Amazon EC2 instances.The internal service components need to access third-party software as a service (SaaS) APIs that are hosted on AWS.The company needs to provide secure and private connectivity from the application’s internal services to the third-party SaaS application.The company needs to ensure that there is minimal public internet exposure.

Which solution will meet these requirements?

Implement an AWS Site-to-Site VPN to establish a secure connection with the third-party SaaS provider.

Deploy AWS Transit Gateway to manage and route traffic between the application’s VPC and the third-party SaaS provider.

Configure AWS PrivateLink to allow only outbound traffic from the VPC without enabling the third-party SaaS provider to establish.

Use AWS PrivateLink to create a private connection between the application’s VPC and the third-party SaaS provider.

Explanations:

AWS Site-to-Site VPN provides a secure connection but does not ensure private connectivity to the SaaS provider, as it still requires the use of public internet routes.

AWS Transit Gateway is used for managing and routing traffic between VPCs, but it does not provide private connectivity to third-party SaaS providers without exposing traffic to the public internet.

AWS PrivateLink allows private access to services, but the description states it only allows outbound traffic from the VPC, which does not meet the requirement for a private connection to the SaaS provider.

AWS PrivateLink enables private connectivity from the application’s VPC directly to the third-party SaaS provider, ensuring secure, private access without exposing traffic to the public internet.

Learn & move to cloud

Which solution will meet these requirements?

Explanations:

Leave a Reply Cancel reply