www.HadoopExam.com

HadoopExam Learning Resources

Question : 5 There is a big Investment bank who wish to use cloud infrastructire. However, they are having huge portfolio of customers and thier data needs to be confidential. They are having 100 number of App Servers and In house Oracle database setup.

Question : 5  There is a big Investment bank who wish to use cloud infrastructire. However, they are having huge portfolio of customers and thier data needs to be confidential. They are having 100 number of App Servers and In house Oracle database setup. How they can leverage the AWS cloud infra.

1.     The organization should plan the all 100 app server on the public subnet and oracle rds in a private subnet so it will not be in the public cloud.

2.      The organization should plan the app server on the public subnet and keep the Oracle database in the organization's data center and connect them with the VPN gateway.

3.      The organization should plan the app server on the public subnet and use RDS with the private subnet for a secure data operation.

4.    The organization should use the public subnet for the app server and use RDS with a storage gateway to access as well as sync the data securely from the local data center.

Correct Answer : 2 Exp : A virtual private cloud (VPC) is a virtual network dedicated to your AWS account. It is logically isolated from other virtual networks in the AWS cloud. You can launch your AWS resources, such as Amazon EC2 instances, into your VPC. When you create a VPC, you specify the set of IP addresses for the VPC in the form of a Classless Inter-Domain Routing (CIDR) block (for example, 10.0.0.0/16). 

You can optionally set up a connection between your VPC and your corporate or home network. If you have an IP address prefix in your VPC that overlaps with one of your networks' prefixes, any traffic to the network's prefix is dropped. For example, let's say that you have the following:

    A VPC with CIDR block 10.0.0.0/16

    A subnet in that VPC with CIDR block 10.0.1.0/24

    Instances running in that subnet with IP addresses 10.0.1.4 and 10.0.1.5

    On-premises host networks using CIDR blocks 10.0.37.0/24 and 10.1.38.0/24

 

When those instances in the VPC try to talk to hosts in the 10.0.37.0/24 address space, the traffic is dropped because 10.0.37.0/24 is part of the larger prefix assigned to the VPC (10.0.0.0/16). The instances can talk to hosts in the 10.1.38.0/24 space because that block isn't part of 10.0.0.0/16.

You can also create a VPC peering connection between your VPCs, or with a VPC in another AWS account. A VPC peering connection enables you to route traffic between the VPCs using private IP addresses; however, you cannot create a VPC peering connection between VPCs that have overlapping CIDR blocks. For more information, see VPC Peering.

We therefore recommend that you create a VPC with a CIDR range large enough for expected future growth, but not one that overlaps with current or expected future subnets anywhere in your corporate or home network, or that overlaps with current or future VPCs. 

 

You have no rights to post comments

You are here: Home AWS (Amazon WebService) AWS Architect : Professional Question : 5 There is a big Investment bank who wish to use cloud infrastructire. However, they are having huge portfolio of customers and thier data needs to be confidential. They are having 100 number of App Servers and In house Oracle database setup.