ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Advanced Networking - Specialty ANS-C01 All Questions

View all questions & answers for the AWS Certified Advanced Networking - Specialty ANS-C01 exam
Go to Exam

Exam AWS Certified Advanced Networking - Specialty ANS-C01 topic 1 question 118 discussion

Exam question from Amazon's AWS Certified Advanced Networking - Specialty ANS-C01
Question #: 118
Topic #: 1
[All AWS Certified Advanced Networking - Specialty ANS-C01 Questions]

A company has a single VPC in the us-east-1 Region. The company is planning to set up a new VPC in the us-east-2 Region. The existing VPC has an AWS Site-to-Site VPN connection to the company's on-premises environment and uses a virtual private gateway.

A network engineer needs to implement a solution to establish connectivity between the existing VPC and the new VPC. The solution also must implement support for IPv6 for the new VPC. The company has new on-premises resources that need to connect to VPC resources by using IPv6 addresses.

Which solution will meet these requirements?

  • A. Create a new virtual private gateway in us-east-1. Attach the new virtual private gateway to the new VPC. Create two new Site-to-Site VPN connections to the new virtual private gateway with IPv4 and IPv6 support. Configure routing between the VPCs by using VPC peering.
  • B. Create a transit gateway in us-east-1 and in us-east-2. Attach the existing VPC and the new VPC to each transit gateway. Create a new Site-to-Site VPN connection to each transit gateway with IPv4 and IPv6 support. Configure transit gateway peering. Configure routing between the VPCs and the on-premises environment.
  • C. Create a new virtual private gateway in us-east-2. Attach the new virtual private gateway to the new VPCreate two new Site-to-Site VPN connections to the new virtual private gateway with IPv4 and IPv6 support. Configure routing between the VPCs by using VPC peering.
  • D. Create a transit gateway in us-east-1. Attach the existing VPC and the new VPC to the transit gateway. Create two new Site-to-Site VPN connections to the transit gateway with IPv4 and IPv6 support. Configure transit gateway peering. Configure routing between the VPCs and the on-premises environment.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Awadhesh at June 6, 2023, 11:50 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
papercuts23
Highly Voted 1 year, 2 months ago
Selected Answer: B
Transit gateway attachment can only be in the same region as the TGW itself
upvoted 8 times
JoellaLi
4 months, 3 weeks ago
What's wrong with C?
upvoted 1 times
JoellaLi
4 months, 1 week ago
Support for IPv6 traffic for VPN connections on a transit gateway. IPv6 traffic is not supported for VPN connections on a virtual private gateway. Site-to-Site VPN connections on a virtual private gateway do not support IPv6.
upvoted 3 times
...
...
...
sanalainen
Highly Voted 9 months, 2 weeks ago
B is ok, but creates a lot of TGW processing cost at this point. What's wrong with C?
upvoted 5 times
JoellaLi
4 months, 1 week ago
Support for IPv6 traffic for VPN connections on a transit gateway. IPv6 traffic is not supported for VPN connections on a virtual private gateway. Site-to-Site VPN connections on a virtual private gateway do not support IPv6.
upvoted 1 times
...
...
Rollizo
Most Recent 1 week, 2 days ago
Selected Answer: B
cannot be C because of: VGWs are region-specific and cannot connect across regions. VPC peering does not support IPv6 across regions.
upvoted 1 times
...
vic614
2 months, 2 weeks ago
Selected Answer: B
Virtual Private Gateway doesn't support IPv6
upvoted 2 times
...
seochan
2 months, 3 weeks ago
Selected Answer: C
It's not B guys.. A Site-to-Site VPN connection cannot support both IPv4 and IPv6 traffic. https://docs.aws.amazon.com/vpn/latest/s2svpn/ipv4-ipv6.html
upvoted 2 times
seochan
2 months, 3 weeks ago
I changed my mind. It's B "Create a new Site-to-Site VPN connection to each transit gateway with IPv4 and IPv6 support." might not meaning that they will use dual stack-mode. And I clearly cannot create an IPv6 s2s VPN connection with VGW.
upvoted 1 times
...
...
JoellaLi
4 months, 3 weeks ago
Selected Answer: C
VPCs across accounts and AWS Regions can also be peered together. But AWS Transit Gateway is an regional network transit hub.
upvoted 1 times
JoellaLi
4 months, 3 weeks ago
Change to B. Inter-Region gateway peering uses the same network infrastructure as VPC peering. You can peer both intra-Region and inter-Region transit gateways, and route traffic between them, which includes IPv4 and IPv6 traffic. https://docs.aws.amazon.com/vpc/latest/tgw/tgw-peering.html
upvoted 1 times
JoellaLi
4 months, 3 weeks ago
Actually not sure about B or C ...
upvoted 1 times
Jordarlu
3 months ago
https://docs.aws.amazon.com/vpn/latest/s2svpn/ipv4-ipv6.html#:~:text=IPv6%20addresses%20are%20only%20supported,gateway%20do%20not%20support%20IPv6. Site-to-Site VPN connections on a virtual private gateway do not support IPv6.
upvoted 2 times
...
...
...
...
ogrefighter
5 months ago
Selected Answer: C
A: not correct because the new VPC is in us-east-2 so no need for a new Virual private gateway in us-east-1 b: not correct because creates only one site-to-site VPN connection, but requirement to offer both ipv4 and ipv6 mandates two connections: https://docs.aws.amazon.com/vpn/latest/s2svpn/ipv4-ipv6.html c - correct because will work and be economical d - not correct because VPC cannot connect to Transit Gateway in another region (which is the second sentence)
upvoted 2 times
...
_mavik_
6 months ago
Selected Answer: C
Correct answer is C VPC to VPC by peering VPCs to on-prem by different S2S VPN - will have 1.25 Gb for each VPC
upvoted 2 times
_mavik_
6 months ago
++ this design is more cost-effective
upvoted 1 times
...
...
Arad
9 months, 2 weeks ago
Selected Answer: B
B is the right answer.
upvoted 1 times
...
ISSDoksim
1 year ago
B - A Site-to-Site VPN connection cannot support both IPv4 and IPv6 traffic.
upvoted 3 times
...
[Removed]
1 year ago
Selected Answer: B
B most scalable. However A, is correct if you consider the most effective, but because the question doesn't say that we need to save money, I picked the BEST option B.
upvoted 4 times
...
albertkr
1 year, 1 month ago
transit gateway peering will allow the communication between all networks. To monitor the overall infrastructure, AWS Transit Gateway Network Manager is utilized for this purpose. https://aws.amazon.com/transit-gateway/network-manager/
upvoted 1 times
albertkr
1 year, 1 month ago
Moderator, pls erase comment, as this comment is supposed to be for no 117.
upvoted 2 times
...
...
tcp22
1 year, 1 month ago
B for sure
upvoted 1 times
...
demoras
1 year, 2 months ago
Selected Answer: B
Answer should be B
upvoted 3 times
...
Awadhesh
1 year, 2 months ago
Answer should be B
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago