Question 215:
A web company is looking to implement an external payment service into their highly available application deployed in a VPC. Their application EC2 instances are behind a public-facing ELB with NAT instances and Public IP s in place. Auto Scaling is used to add additional instances as traffic increases under normal load. The application runs 2 instances in the Auto Scaling group, but it can scale 3x in size at the peak. The application instances need to communicate with the payment service over the Internet, which requires whitelisting all public IP addresses to communicate with it. A maximum of 4 whitelisting IP addresses are allowed at a time and can be added through an API. How should they architect their solution?
Answer options:
A.Route payment requests through two NAT instances setup for High Availability and whitelist the Elastic IP addresses attached to the NAT instances. B.Whitelist the VPC Internet Gateway Public IP and route payment requests through the Internet Gateway. C.Whitelist the ELB IP addresses and route payment requests from the Application servers through the ELB.D.Automatically assign public IP addresses to the application instances in the Auto Scaling group and run a script on boot that adds each instance`s public IP address to the payment validation whitelist API.