Exam AWS Certified Advanced Networking - Specialty ANS-C01 topic 1 question 19 discussion

D - Correct. Route table route entry can't reference the VPG if it is not available.

D Reading all options, It seems that there is a problem of the run order for creating resources. According to the below AWS document, you must configure your route table to include the routes used by your Site-to-Site VPN connection and point them to your virtual private gateway. https://docs.aws.amazon.com/vpn/latest/s2svpn/SetUpVPNConnections.html That means you must create the virtual private gateway before creating the route table. AWS CloudFormation does not support configuring detailed run order of creating resources. However, when you add a DependsOn attribute to a resource, that resource is created only after the creation of the resource specified in the DependsOn attribute. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html

B - The stack should provision something like this VPGW -> CGW -> VPN -> RTs

D -You can't add routes unless the route table is created first.

D is the correct answer.

You will DependsOn attribute is used in an AWS CloudFormation template. So, A and C cannot be answers. Option B is wrong because you will make route table change after you finish creating VPN tunnel. Hence, Option D is correct

The DependsOn attribute is used in an AWS CloudFormation template to specify the order of resource creation. When you specify a resource in the DependsOn attribute of another resource, AWS CloudFormation creates the specified resource first before creating the resource with the DependsOn attribute. In this case, the error might be occurring because the CloudFormation template is attempting to create the route table entry before the virtual private gateway is created. By adding the DependsOn attribute to the resource declaration for the route table entry and specifying the virtual private gateway resource, you ensure that the virtual private gateway is created before the route table entry. Option B is incorrect because adding DependsOn to the route table entry for the virtual private gateway is more appropriate than specifying the route table entry for the virtual private gateway.

I think that it's correct answer is D according to SPOTO products.

I think that it's correcty answer is D.

VGW must be created before RTB getting updated.

Option B suggests adding a "DependsOn" attribute to the VGW resource declaration with the route table entry as the dependency. However, this would mean that the VGW wouldn't be created until after the route table entry, which isn't possible because the route table entry points to the VGW. On the other hand, option D suggests adding a "DependsOn" attribute to the route table entry resource declaration with the VGW as the dependency. This means the route table entry wouldn't be created until after the VGW, which is the correct order of operations. Therefore, D is the correct answer because the route table entry should depend on the VGW, not the other way around.

B. The network engineer should add the DependsOn attribute to the resource declaration for the virtual private gateway and specify the route table entry resource. This ensures that the route table entry resource is created before the virtual private gateway is created. D is correct because Adding the DependsOn attribute to the resource declaration for the route table entry and specifying the virtual private gateway resource will not resolve the error. This is because the route table entry resource is dependent on the virtual private gateway resource and not the other way around. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpngateway.html

I think B is correct. "When you add a DependsOn attribute to a resource, that resource is created only after the creation of the resource specified in the DependsOn attribute." https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html

Adding the DependsOn attribute to the resource declaration for the route table entry (option D) would not resolve the error because the issue lies with the creation of the virtual private gateway, not the route table entry.

Answer is B

D. The resource that takes more time to be created is the VPG, and there rest depends on it

Answer is B) If you create a route that references a transit gateway in the same template where you create the transit gateway, you must declare a dependency on the transit gateway attachment. The route table cannot use the transit gateway until it has successfully attached to the VPC. Add a DependsOn Attribute in the AWS::EC2::Route resource to explicitly declare a dependency on the AWS::EC2::TransitGatewayAttachment resource. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-route.html