ANS-C01

Study mode — explanations shown

1

Network Implementation

medium

A network engineer runs the above command to list VPC endpoints. The engineer notices that the second endpoint (vpce-0b2c3d4e5f6g7h8i9) does not have a policy document displayed. What does this indicate?

Network Topology
$ aws ec2 describe-vpc-endpointsquery 'VpcEndpoints[*].{Id:VpcEndpointIdoutput jsonRefer to the exhibit.```"Id": "vpce-0a1b2c3d4e5f6g7h8","Type": "Gateway","ServiceName": "com.amazonaws.us-east-1.s3","PolicyDocument": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Effect\":\"Allow\",\"Principal\":\"*\",\"Action\":[\"s3:GetObject\"],\"Resource\":[\"arn:aws:s3:::my-bucket/*\"]}]}"},"Id": "vpce-0b2c3d4e5f6g7h8i9","ServiceName": "com.amazonaws.us-east-1.dynamodb"
0 of 120 answered