A company has hundreds of EC2 instances in private subnets that frequently access Amazon S3 to download large datasets. The company is seeing high data processing charges on their NAT Gateway. How can they eliminate these NAT Gateway charges for S3 traffic?

Answer options:

Move the EC2 instances to public subnets.

Create an Interface VPC Endpoint for S3.

Create a Gateway VPC Endpoint for S3 and update the route tables.

Use AWS Direct Connect to route traffic to S3.

How to approach this question

Identify the free method to access S3 from a private subnet.

Full Answer

C.Create a Gateway VPC Endpoint for S3 and update the route tables.✓ Correct

Create a Gateway VPC Endpoint for S3 and update the route tables.

A Gateway VPC Endpoint allows you to privately connect your VPC to Amazon S3 without requiring an internet gateway or NAT device. Gateway endpoints for S3 are provided at no additional charge, eliminating NAT Gateway data processing fees.

Common mistakes

Choosing Interface Endpoint, which costs money per hour and per GB processed.

Question 56 All questions Question 58

Practice the full AWS SAA-C03 Practice Exam 5

65 questions · hints · full answers · grading

More questions from this exam

Q01A company needs to grant an external auditor read-only access to specific AWS resources. The audi...Easy Q02An application running on EC2 instances needs to access objects in an S3 bucket. The security tea...Medium Q03A company is designing a VPC for a multi-tier web application. They need to block specific malici...Medium Q04A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...Hard Q05A company hosts a web application on an Application Load Balancer (ALB). They are experiencing SQ...Medium

View all 65 questions →