A company has a multi-tier application deployed across three Availability Zones. They have a NAT Gateway in each AZ for high availability. To reduce costs, they want to consolidate to a single NAT Gateway while maintaining internet access for all private subnets. Which TWO actions must be taken? (Select TWO.)

Answer options:

Delete the NAT Gateways in two of the Availability Zones.

Update the route tables for all private subnets to point to the remaining NAT Gateway.

Move all EC2 instances into the single Availability Zone with the NAT Gateway.

Create a Transit Gateway to route traffic between the AZs.

Attach an Elastic IP to each EC2 instance in the private subnets.

How to approach this question

Understand that a NAT Gateway in one AZ can serve private subnets in other AZs via route table updates.

Full Answer

Keep one NAT Gateway and update the route tables of all private subnets.

To reduce costs, you can use a single NAT Gateway in one AZ. You must delete the extra NAT Gateways and update the route tables of the private subnets in the other AZs to point their default route (0.0.0.0/0) to the single remaining NAT Gateway. Note: This sacrifices some high availability.

Common mistakes

Thinking a NAT Gateway can only serve the AZ it resides in.

Question 59 All questions Question 61

Practice the full AWS SAA-C03 Practice Exam 3

65 questions · hints · full answers · grading

More questions from this exam

Q01A company stores sensitive documents in an Amazon S3 bucket. The security team requires that only...Easy Q02A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...Medium Q03A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer (AL...Easy Q04A company wants to continuously monitor its AWS accounts for malicious activity and unauthorized ...Medium Q05A company needs to encrypt data at rest in Amazon RDS and manage database credentials securely. T...Medium

View all 65 questions →