A company has 20 AWS accounts and has hundreds of VPCs within those accounts. Each account has several security groups. Most of the security groups share a common set of CIDR range rules.
The company wants to simplify the management of these CIDR ranges that the security groups use. The company's network team does not have full access to all the accounts. The common CIDR ranges are
10.10.0.0/16, 10.8.0.0/16, and 192.168.128.0/24.
Which solution should a network engineer recommend to meet these requirements?
A. Use AWS CloudFormation and AWS CloudFormation StackSets to configure all the accounts and VPCs with the same security groups.
B. Use a CLI and a shell script to configure all the accounts and VPCs with the same security groups.
C. Use AWS CloudFormation to configure a VPC prefix list, and share the prefix list with all the accounts in AWS Resource Access Manager.
D. Use a CLI and a shell script to configure all the accounts and VPCs with the same network ACLs.
The company wants to simplify the management of these CIDR ranges that the security groups use. The company's network team does not have full access to all the accounts. The common CIDR ranges are
10.10.0.0/16, 10.8.0.0/16, and 192.168.128.0/24.
Which solution should a network engineer recommend to meet these requirements?
A. Use AWS CloudFormation and AWS CloudFormation StackSets to configure all the accounts and VPCs with the same security groups.
B. Use a CLI and a shell script to configure all the accounts and VPCs with the same security groups.
C. Use AWS CloudFormation to configure a VPC prefix list, and share the prefix list with all the accounts in AWS Resource Access Manager.
D. Use a CLI and a shell script to configure all the accounts and VPCs with the same network ACLs.