Question

A local bank has an in-house application which handles sensitive financial data in a private subnet. After the data is processed by the EC2 worker instances, they will be delivered to S3 for ingestion by other services. How should you design this solution so that the data does not pass through the public Internet?

Answer 1

Answer:

Explanation:

Based on the scenario being described within the question it can be said that the best way to accomplish this would be to configure a VPC Gateway Endpoint along with a corresponding route entry that directs the data to S3. This gateway will allow the different resources within your VPC to access the internet as well as allow incoming resources in.