ACorrect
An internet gateway enables bidirectional communication between the VPC and the internet.
This is correct. An internet gateway is attached to a VPC and enables bidirectional communication with the internet.
Which TWO statements about Amazon VPC and its components are correct? (Choose TWO.)
1 / 1
Select all that apply
CorrectA, D
Explanation
A question about selecting the two correct statements about VPC and its components.
- 1「Amazon VPC and its components」Tests correct understanding of the properties of IGW, NAT, subnets, and VPC
BIncorrect
A private subnet has a route to the internet gateway and can be accessed directly from the internet.
This is incorrect. A private subnet does NOT have a direct route to the internet gateway and cannot be accessed directly from the internet.
This statement is factually incorrect.
CIncorrect
A single subnet can span across multiple AWS Regions.
This is incorrect. A subnet belongs to a single AZ and cannot span across multiple Regions.
The statement that a subnet spans multiple Regions is factually incorrect.
DCorrect
A NAT gateway provides outbound internet connectivity to instances in a private subnet.
This is correct. A NAT gateway allows instances in a private subnet to initiate outbound communication to the internet. It does NOT allow inbound connections from the internet.
EIncorrect
A VPC is a single shared global network used by all AWS customers.
This is incorrect. A VPC is a logically isolated, dedicated virtual network for each customer.
The statement that it is a single network shared by all customers is factually incorrect.
Key Takeaway
Key facts: IGW = bidirectional internet connectivity / NAT = outbound only / private subnet = no direct external access / subnet belongs to 1 AZ / VPC is isolated per customer.