AWS Certified SysOps Administrator – Associate — Question 31

While setting up an AWS managed VPN connection, a SysOps administrator creates a customer gateway resource in AWS. The customer gateway device resides in a data center with a NAT gateway in front of it.
What address should be used to create the customer gateway resource?

Answer options

• A. The private IP address of the customer gateway device
• B. The MAC address of the NAT device in front of the customer gateway device
• C. The public IP address of the customer gateway device
• D. The public IP address of the NAT device in front of the customer gateway device

Correct answer: D

Explanation

The correct answer is D because the public IP address of the NAT device is needed to establish a connection through the NAT. The other options are incorrect as they either reference the private IP address, which is not routable over the internet, or the MAC address, which is not used in this context.