Internal security teams at your customer get requests to enable Amazon S3 access from inside the corporate network. Thro
Posted: Thu Jul 21, 2022 10:00 pm
Internal security teams at your customer get requests to enable Amazon S3 access from inside the corporate network. Through your company firewalls, all external traffic must be expressly whitelisted.
How is this access going to be granted by your security team?
A. Obtain the list of IP prefixes from AWS Forum announcements, and use those prefixes in firewall rules.
B. Obtain the list of IP prefixes from ip-ranges.json, and use those prefixes in firewall rules.
C. Obtain the list of IP prefixes by performing a DNS lookup on Amazon S3 endpoints, and use those prefixes in firewall rules.
D. Connect your data center to a VPC via Direct Connect. Create routes that forward traffic from your data center to an S3 private endpoint.
How is this access going to be granted by your security team?
A. Obtain the list of IP prefixes from AWS Forum announcements, and use those prefixes in firewall rules.
B. Obtain the list of IP prefixes from ip-ranges.json, and use those prefixes in firewall rules.
C. Obtain the list of IP prefixes by performing a DNS lookup on Amazon S3 endpoints, and use those prefixes in firewall rules.
D. Connect your data center to a VPC via Direct Connect. Create routes that forward traffic from your data center to an S3 private endpoint.