ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 461 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional
Question #: 461
Topic #: 1
[All AWS Certified Solutions Architect - Professional Questions]

A company currently uses a single 1 Gbps AWS Direct Connect connection to establish connectivity between an AWS Region and its data center. The company has five Amazon VPCs, all of which are connected to the data center using the same Direct Connect connection. The Network team is worried about the single point of failure and is interested in improving the redundancy of the connections to AWS while keeping costs to a minimum.
Which solution would improve the redundancy of the connection to AWS while meeting the cost requirements?

  • A. Provision another 1 Gbps Direct Connect connection and create new VIFs to each of the VPCs. Configure the VIFs in a load balancing fashion using BGP.
  • B. Set up VPN tunnels from the data center to each VPC. Terminate each VPN tunnel at the virtual private gateway (VGW) of the respective VPC and set up BGP for route management.
  • C. Set up a new point-to-point Multiprotocol Label Switching (MPLS) connection to the AWS Region that's being used. Configure BGP to use this new circuit as passive, so that no traffic flows through this unless the AWS Direct Connect fails.
  • D. Create a public VIF on the Direct Connect connection and set up a VPN tunnel which will terminate on the virtual private gateway (VGW) of the respective VPC using the public VIF. Use BGP to handle the failover to the VPN connection.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by awsec2 at Sept. 14, 2019, 5:44 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
donathon
Highly Voted 3 years, 6 months ago
B A: This is too costly. C: How will this help when direct connect is the issue? D; There is still a single point of failure and Direct Connect cannot be set to public. It is not publicily accessible.
upvoted 29 times
...
Moon
Highly Voted 3 years, 6 months ago
I agree with "B". A: is costly. C: MPLS can not be used without dedicated link. Also, AWS does not support it. D: using Public VIF over the same direct connect will be helpful, as it is not adding extra physical redundancy. Also, Public VIFs are not used to connect on-prim to VPCs. it is used to connect on-prim to AWS public services like S3, DynamoDB...etc.
upvoted 22 times
...
SkyZeroZx
Most Recent 1 year, 10 months ago
lowcost keyword = VPN
upvoted 1 times
...
SkyZeroZx
1 year, 10 months ago
Selected Answer: B
I agree with "B".
upvoted 1 times
...
SkyZeroZx
1 year, 10 months ago
B A: is good option but costly C: How will this help when direct connect is the issue? D; There is still a single point of failure and Direct Connect cannot be set to public. It is not publicily accessible.
upvoted 1 times
...
dmscountera
2 years, 6 months ago
Selected Answer: B
Based on all comments
upvoted 1 times
...
Sumit_Kumar
2 years, 8 months ago
D: https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/aws-direct-connect-vpn.html
upvoted 1 times
...
cldy
3 years, 4 months ago
B. Set up VPN tunnels from the data center to each VPC. Terminate each VPN tunnel at the virtual private gateway (VGW) of the respective VPC and set up BGP for route management.
upvoted 1 times
...
AzureDP900
3 years, 4 months ago
B is right answer
upvoted 1 times
...
moon2351
3 years, 5 months ago
Answer is B
upvoted 1 times
...
student22
3 years, 5 months ago
B redundency + minimum cost
upvoted 1 times
...
WhyIronMan
3 years, 5 months ago
I'll go with B
upvoted 1 times
...
Waiweng
3 years, 5 months ago
B is the answer
upvoted 3 times
...
Pupu86
3 years, 5 months ago
Option A - too costly to subscribe to another 1Gbps DX link Option C - doesn't make sense Option D - Public VIF still make use of the same DX link but only for public AWS resource connections such as S3 DynamoDB etc.. So Answer is B
upvoted 2 times
...
Ebi
3 years, 5 months ago
B is the answer
upvoted 3 times
...
sanjaym
3 years, 5 months ago
I'll with B
upvoted 2 times
...
PAUGURU
3 years, 6 months ago
D as stated here: https://docs.aws.amazon.com/directconnect/latest/UserGuide/remote_regions.html "You can create a Direct Connect gateway in any public Region. Use it to connect your AWS Direct Connect connection over a private virtual interface to VPCs in your account that are located in different Regions or to a transit gateway. Alternatively, you can create a public virtual interface for your AWS Direct Connect connection and then establish a VPN connection to your VPC in the remote Region. "
upvoted 1 times
Aquavk
3 years, 6 months ago
in case of Direct connect would still remain a single point of failure. B is correct
upvoted 1 times
...
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago