Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Amazon Discussions

Exam AWS Certified Advanced Networking - Specialty ANS-C01 topic 1 question 197 discussion

Exam question from Amazon's AWS Certified Advanced Networking - Specialty ANS-C01
Question #: 197
Topic #: 1
[All AWS Certified Advanced Networking - Specialty ANS-C01 Questions]

A company has established connectivity between its on-premises data center in Paris. France, and the AWS Cloud by using an AWS Direct Connect connection. The company uses a transit VIF that connects the Direct Connect connection with a transit gateway that is hosted in the Europe (Paris) Region. The company hosts workloads in private subnets in several VPCs that are attached to the transit gateway.

The company recently acquired another corporation that hosts workloads on premises in an office building in Tokyo, Japan. The company needs to migrate the workloads from the Tokyo office to AWS. These workloads must have access to the company's existing workloads in Paris. The company also must establish connectivity between the Tokyo office building and the Paris data center.

In the Asia Pacific (Tokyo) Region, the company creates a new VPC with private subnets for migration of the workloads. The workload migration must be completed in 5 days. The workloads cannot be directly accessible from the internet.

Which set of steps should a network engineer take to meet these requirements?

  • A. 1. Create public subnets in the Tokyo VPC to migrate the workloads into.
    2. Configure an internet gateway for the Tokyo office to reach the Tokyo VPC.
    3. Configure security groups on the Tokyo workloads to only allow traffic from the Tokyo office and the Paris workloads.
    4. Create peering connections between the Tokyo VPC and the Paris VPCs.
    5. Configure a VPN connection between the Paris data center and the Tokyo office by using existing routers.
  • B. 1. Configure a transit gateway in the Asia Pacific (Tokyo) Region. Associate this transit gateway with the Tokyo VPC.
    2. Create peering connections between the Tokyo transit gateway and the Paris transit gateway.
    3. Set up a new Direct Connect connection from the Tokyo office to the Tokyo transit gateway.
    4. Configure routing on both transit gateways to allow data to flow between sites and the VPCs.
  • C. 1. Configure a transit gateway in the Asia Pacific (Tokyo) Region. Associate this transit gateway with the Tokyo VPC.
    2. Create peering connections between the Tokyo transit gateway and the Paris transit gateway.
    3. Configure an AWS Site-to-Site VPN connection from the Tokyo office. Set the Tokyo transit gateway as the target.
    4. Configure routing on both transit gateways to allow data to flow between sites and the VPCs.
  • D. 1. Configure an AWS Site-to-Site VPN connection from the Tokyo office to the Paris transit gateway.
    2. Create an association between the Paris transit gateway and the Tokyo VPC.
    3. Configure routing on the Paris transit gateway to allow data to flow between sites and the VPC.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Akshay0403 at June 29, 2024, 5:06 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
cas_tori
2 weeks, 6 days ago
Selected Answer: C
this is C
upvoted 1 times
...
Akshay0403
2 months, 2 weeks ago
Selected Answer: C
5 days so VPN needs to be used over Direct connect
upvoted 4 times
kajiyatta
2 months, 1 week ago
You mean ANS.B,right?
upvoted 1 times
Akshay0403
1 month, 3 weeks ago
Option C offers the best solution by efficiently integrating Tokyo and Paris regions through transit gateways and a VPN connection while adhering to the requirement of avoiding direct internet access. This approach is both secure and operationally efficient, ensuring private and encrypted communication between on-premises and AWS resources.
upvoted 1 times
...
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel