Certified AWS DevOps Engineer Exam
A platform engineer is moving a Dockerized service from a company server room to AWS, aiming to minimize infrastructure management and ensure encrypted connectivity between the on-premises network and AWS.
Requirements
- Minimize infrastructure management
- Encrypted connectivity between on-premises network and AWS
Possible Solutions
- Migrate containers to Amazon ECS on EC2 launch type in a dedicated VPC
- Front the service with a Network Load Balancer using IP targets and an HTTPS listener
- Provision AWS Direct Connect for the on-premises link and use it without additional encryption
- Configure an AWS Site-to-Site VPN between the data center and the VPC
Note: This article does not provide a traditional braindump, but rather a scenario-based approach to solving a problem.
Author's summary: Engineer moves Dockerized service to AWS, requiring minimal infrastructure management and secure connectivity.