AWS Certified Cloud Practitioner — Question 744

Which of the following are benefits of VPC endpoints? (Choose two.)

Answer options

• A. A VPC endpoint makes private connections possible between an on-premises environment and supported AWS services.
• B. A VPC endpoint applies encryption to a connection that would be unencrypted otherwise.
• C. A VPC endpoint makes private connections possible between a VPC and supported AWS services.
• D. A VPC endpoint does not require an internet gateway, virtual private gateway, NAT device, VPN connection, or AWS Direct Connect connection.
• E. A VPC endpoint makes public connections possible for applications. Instances in the VPC do not require public IP addresses to communicate with the internet.

Correct answer: C, D

Explanation

VPC endpoints establish private connections between a VPC and supported AWS services without requiring traffic to traverse the public internet, meaning resources do not need an internet gateway, NAT device, VPN, or Direct Connect. They do not natively connect on-premises environments directly (ruling out A) nor do they provision public internet access for VPC resources (ruling out E). Additionally, while they provide secure routing, they do not automatically apply encryption to otherwise unencrypted application-level traffic (ruling out B).