ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Advanced Networking - Specialty ANS-C01 All Questions

View all questions & answers for the AWS Certified Advanced Networking - Specialty ANS-C01 exam
Go to Exam

Exam AWS Certified Advanced Networking - Specialty ANS-C01 topic 1 question 235 discussion

Exam question from Amazon's AWS Certified Advanced Networking - Specialty ANS-C01
Question #: 235
Topic #: 1
[All AWS Certified Advanced Networking - Specialty ANS-C01 Questions]

A company has VPCs in the us-east-1 Region that are connected to each other through a transit gateway. A network engineer needs to establish an AWS Direct Connect connection between the company's on-premises data center and the transit gateway for the migration of a workload.

The Direct Connect connection is UP according to the ConnectionState metric in Amazon CloudWatch. However, the VIF is DOWN. The network engineer has verified the transit VIF and BGP configurations on the on-premises router and has found no issues. However, the network engineer is unable to ping the Amazon peer IP address.

Which combination of steps should the network engineer take to troubleshoot this issue? (Choose three.)

  • A. Verify that the correct IP address and subnet mask are in use for the subinterface on the router.
  • B. Ensure that VLAN trunking is disabled on the router.
  • C. Verify that the router has a MAC address entry from the AWS endpoint in the Address Resolution Protocol (ARP) table.
  • D. Verify that the optical signal that is received over the cross connect is optimal.
  • E. Ensure that the correct VLAN tag is applied on the subinterface configuration on the router.
  • F. Ensure that TCP port 179 is not being blocked at the on-premises router.
Show Suggested Answer Hide Answer
Suggested Answer: ACE 🗳️
by c1193d4 at Jan. 6, 2025, 3:52 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
intp75
1 month, 3 weeks ago
Selected Answer: ACE
https://docs.aws.amazon.com/directconnect/latest/UserGuide/Troubleshooting.html
upvoted 1 times
...
dspd
2 months, 2 weeks ago
Selected Answer: ACE
A. Correct IP address and subnet mask: This is crucial for establishing the connection. If these are incorrect, the VIF won't be able to establish a connection with the AWS side. C. MAC address entry in ARP table: If the router doesn't have the MAC address of the AWS endpoint in its ARP table, it won't be able to communicate at the link layer. This could explain why the network engineer is unable to ping the Amazon peer IP address. E. Correct VLAN tag: The VLAN tag must match between the AWS configuration and the router's subinterface. If this is misconfigured, the traffic won't be properly tagged and routed.
upvoted 2 times
...
secdaddy
2 months, 4 weeks ago
Selected Answer: ACE
Ping fails so it is lower level than port 179. Connect is up so have light. We have subinterface twice and if there is a subinterface trunking must already be disabled. Could be wrong IP/mask (A), arp failure - maybe cabling to wrong por (C), or wrong vlan tag (E).
upvoted 2 times
...
jfedotov
3 months ago
Selected Answer: AEF
Answers: AEF
upvoted 2 times
meseerie
3 months ago
F is at layer 3, the issue report as at layer2. F is wrong
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago