🔥 3-day streak
Professional Cloud Security Engineer47 / 152
Question 47 of 152

A financial services company runs a fleet of backend processing VMs in a private subnet with no external IP addresses. These VMs must call a third-party payment partner's REST API over the public internet. The partner requires that all inbound traffic originate from a small, fixed set of source IP addresses that the company must register on the partner's allowlist. The security team also needs to guarantee the egress source addresses do not change over time. How should you configure egress connectivity?

Reviewed for accuracy · Report an issueNext question