Q: A company is developing an application in the AWS Clouds. T...

Question 25

A company is developing an application in the AWS Clouds. The application’s HTTP API contains critical information that is published in Amazon API Gateway. The critical information must be accessible from only a limited set of trusted IP addresses that belong to the company’s internal network. Which solution will meet these requirements?

A. Set up an API Gateway private integration to restrict access to a predefined set of IP addresses.

B. Create a resource policy for the API that denies access to any IP address that is not specifically allowed.

C. Directly deploy the API in a private subnet. Create a network ACL. Set up rules to allow the traffic from specific IP addresses.

D. Modify the security group that is attached to API Gateway to allow inbound traffic from only the trusted IP addresses.

Question 25

Comments

Leave a Comment