ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Advanced Networking - Specialty ANS-C01 All Questions

View all questions & answers for the AWS Certified Advanced Networking - Specialty ANS-C01 exam
Go to Exam

Exam AWS Certified Advanced Networking - Specialty ANS-C01 topic 1 question 95 discussion

Exam question from Amazon's AWS Certified Advanced Networking - Specialty ANS-C01
Question #: 95
Topic #: 1
[All AWS Certified Advanced Networking - Specialty ANS-C01 Questions]

A company's network engineer is configuring an AWS Site-to-Site VPN connection between a transit gateway and the company's on-premises network. The Site-to-Site VPN connection is configured to use BGP over two tunnels in active/active mode with equal-cost multi-path (ECMP) routing activated on the transit gateway.

When the network engineer attempts to send traffic from the on-premises network to an Amazon EC2 instance, traffic is sent over the first tunnel. However, return traffic is received over the second tunnel and is dropped at the customer gateway. The network engineer must resolve this issue without reducing the overall VPN bandwidth.

Which solution will meet these requirements?

  • A. Configure the customer gateway to use AS PATH prepending and local preference to prefer one tunnel over the other.
  • B. Configure the Site-to-Site VPN options to set the first tunnel as the primary tunnel to eliminate asymmetric routing.
  • C. Configure the virtual tunnel interfaces on the customer gateway to allow asymmetric routing.
  • D. Configure the Site-to-Site VPN to use static routing in active/active mode to ensure that traffic flows over a preferred path.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by AJ7428 at June 8, 2023, 2:11 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
tcp22
Highly Voted 1 year, 7 months ago
it's C Note: With an Active/Active configuration, the customer gateway must have Asymmetric routing activated on the virtual tunnel interfaces. https://repost.aws/knowledge-center/vpn-configure-tunnel-preference
upvoted 6 times
...
woorkim
Most Recent 2 months, 2 weeks ago
only C is correct!
upvoted 1 times
...
Spaurito
3 months, 1 week ago
C - The tunnel needs Asymmetric Routing Static VPNs created between a customer gateway and either a virtual private gateway or a transit gateway In this scenario, the virtual private gateway or transit gateway sends traffic from AWS to the on-premises network on a single VPN tunnel. This tunnel is randomly chosen by AWS and is referred to as the preferred tunnel. If the AWS VPN connection (static routing type) has an Active/Active configuration (both tunnels are UP), then you can't configure AWS to prefer a specific tunnel to send traffic. For example, tunnel A was randomly chosen by AWS as the preferred VPN tunnel for sending traffic from AWS to the on-premises network. If tunnel A goes down, then traffic from AWS automatically fails over to tunnel B. Note: With an Active/Active configuration, the customer gateway must have Asymmetric routing activated on the virtual tunnel interfaces.
upvoted 1 times
...
mrt261
11 months, 3 weeks ago
Selected Answer: C
In an Active/Active configuration with ECMP routing, where both tunnels are utilized simultaneously, enabling asymmetric routing on the virtual tunnel interfaces of the customer gateway is indeed necessary to accommodate the bidirectional flow of traffic over the two tunnels.
upvoted 1 times
...
WherecanIstart
12 months ago
Selected Answer: C
Asymmetric Routing has to be allowed on the customer gateway...
upvoted 1 times
...
vikasj1in
12 months ago
Selected Answer: C
Configure the virtual tunnel interfaces on the customer gateway to allow asymmetric routing. This will: Allow return traffic to flow over different tunnel than initial traffic Maintain full bandwidth of both tunnels with active/active VPN Not require modifying BGP settings or preferring a tunnel The other options do not fully meet the needs: A – AS PATH prepending impacts overall BGP behavior B – Specifying a primary tunnel reduces equal bandwidth use D – Static routing disables ECMP and load balancing
upvoted 1 times
...
Marfee400704
12 months ago
I think that it's correct answer is C according to SPOTO products.
upvoted 1 times
...
Arad
1 year, 3 months ago
Selected Answer: C
C is the right answer.
upvoted 1 times
...
Josh1217
1 year, 7 months ago
Selected Answer: C
Every other option except option C will reduce overall bandwidth.
upvoted 2 times
...
Balasmaniam
1 year, 8 months ago
Selected Answer: C
Must be C, The static route will prefer specific link so without reducing BW, we can enable asymmetric routing to utilize both links.
upvoted 3 times
...
AJ7428
1 year, 8 months ago
Should be D.
upvoted 2 times
tcp22
1 year, 7 months ago
it's C Note: With an Active/Active configuration, the customer gateway must have Asymmetric routing activated on the virtual tunnel interfaces. https://repost.aws/knowledge-center/vpn-configure-tunnel-preference
upvoted 2 times
...
Training
1 year, 8 months ago
https://repost.aws/knowledge-center/vpn-configure-tunnel-preference
upvoted 2 times
Training
1 year, 8 months ago
If the AWS VPN connection (static routing type) has an Active/Active configuration (both tunnels are UP), then you can't configure AWS to prefer a specific tunnel to send traffic. For example, tunnel A was randomly chosen by AWS as the preferred VPN tunnel for sending traffic from AWS to the on-premises network. If tunnel A goes down, then traffic from AWS automatically fails over to tunnel B.
upvoted 2 times
...
...
AJ7428
1 year, 8 months ago
Changing to C.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago