Which solution will meet these requirements?

By:
On:
In: SOA-C02
Tagged:
With: 0 Comments
A company runs an application on hundreds of Amazon EC2 instances in three Availability Zones.The application calls a third-party API over the public internet.A SysOps administrator must provide the third party with a list of static IP addresses so that the third party can allow traffic from the application.

Which solution will meet these requirements?

Add a NAT gateway in the public subnet of each Availability Zone. Make the NAT gateway the default route of all private subnets in those Availability Zones.

Allocate one Elastic IP address in each Availability Zone. Associate the Elastic IP address with all the instances in the Availability Zone.

Place the instances behind a Network Load Balancer (NLB). Send the traffic to the internet through the private IP address of the NLB.

Update the main route table to send the traffic to the internet through an Elastic IP address that is assigned to each instance.

Explanations:

NAT gateways in each Availability Zone allow instances in private subnets to access the internet using the NAT gateway’s Elastic IP. This setup provides a small set of static IPs that can be shared by instances across Availability Zones.

Elastic IPs cannot be directly assigned to multiple instances. Elastic IPs are only associated with individual instances or resources like NAT gateways, so this does not meet the requirement.

Network Load Balancers do not provide static outbound IPs. They are primarily for distributing inbound traffic and cannot route traffic to the internet with a static IP.

Updating the main route table with individual instance Elastic IPs would require each instance to have its own public Elastic IP, which would not meet the static IP requirement efficiently and is costly to maintain.

Leave a Reply

Your email address will not be published. Required fields are marked *

17 − two =