A company is deploying a generative AI service on OCI using the OCI Data Science service with a large language model (LLM) in a VCN. The model inference endpoint must be accessible only from a private subnet within the same VCN. Which networking component should be configured to enable this?
Trap 1: NAT Gateway
NAT gateway is for outbound internet access from private subnets.
Trap 2: Dynamic Routing Gateway (DRG)
DRG is used for connecting VCNs or on-premises networks, not for accessing OCI services.
Trap 3: Internet Gateway
Internet gateway would expose the endpoint to the internet.
- A
NAT Gateway
Why wrong: NAT gateway is for outbound internet access from private subnets.
- B
Dynamic Routing Gateway (DRG)
Why wrong: DRG is used for connecting VCNs or on-premises networks, not for accessing OCI services.
- C
Internet Gateway
Why wrong: Internet gateway would expose the endpoint to the internet.
- D
Service Gateway
Service gateway enables private subnet access to OCI services like Data Science.