AWS Certified Advanced Networking Specialty Practice Exam

What is a recommended connectivity method for a hosted service that requires central provisioning from dedicated VPCs?

• A. Using AWS Direct Connect for all requests
• B. Utilizing AWS PrivateLink or making services public
• C. Using a VPN connection between VPCs
• D. Implementing third-party network appliances

The correct answer is: Utilizing AWS PrivateLink or making services public

Utilizing AWS PrivateLink is a recommended connectivity method for enabling access to a hosted service in a centralized manner while maintaining security and private connectivity. AWS PrivateLink allows you to securely connect services across VPCs without exposing them to the internet. PrivateLink creates endpoints within your VPC that provide private connectivity to various AWS services or privately hosted services, ensuring that traffic does not traverse the public internet, which reduces latency and increases security. This method is particularly effective when you have a service hosted in one VPC that needs to be accessed by resources in multiple other VPCs, ensuring that the service can be centrally managed and provisioned. By leveraging PrivateLink, you can simplify networking while maintaining high security and reliability in service access. When considering options like making services public, this approach can introduce security risks by exposing your services over the internet. Similarly, while a VPN connection between VPCs can provide secure connectivity, it may not be as efficient or straightforward to manage as PrivateLink, especially when multiple VPCs need to access the same service. Direct Connect is also a viable option but is typically more suited for high-throughput requirements or hybrid cloud scenarios rather than central provisioning from multiple dedicated VPC environments. Implementing third-party network appliances can add