A company wants to migrate its applications from its on-premises data center to a VPC in the AWS Cloud. These applications will need to access on-premises resources. Which actions will meet these requirements? (Choose two.)
A.
Use AWS Service Catalog to identify a list of on-premises resources that can be migrated.
B.
Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
C.
Use an Amazon CloudFront distribution and configure it to accelerate content delivery close to the on-premises resources.
D.
Set up an AWS Direct Connect connection between the on-premises data center and AWS.
E.
Use Amazon CloudFront to restrict access to static web content provided through the on-premises web servers.
Option E is also not relevant to the question as it focuses on restricting access to static web content provided through on-premises web servers using Amazon CloudFront, but the question is about accessing on-premises resources from the VPC in the AWS Cloud.
Option E is also not relevant to the question as it focuses on restricting access to static web content provided through on-premises web servers using Amazon CloudFront, but the question is about accessing on-premises resources from the VPC in the AWS Cloud.
Create a VPN connection between an on-premises device and a virtual private gateway in the VPC and set up an AWS Direct Connect connection between the on-premises data center and AWS.
B and D is basically talking about same thing, so it wouldn't make sense to pick them both. You use either one or the other, but not both:
B - secure connection on public network. And it doesn't say that this app will be access on public internet, it says it needs to connect to on-prem services. So definitely NOT this option.
D - secure connection on local network (key word connect on-prem services)
I think A is not correct, since it assumes that you need to migrate your on-premises resources, whilst the question does not talk about migrating, but about accessing.
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
There is a requirement to have some resources on-prem, therefore, a Direct Connect services is needed.
And based on the AWS Well Architecture framework, we should think about security:
> **Apply security at all layers:** Apply a defence in depth approach with multiple security controls. Apply to all layers (for example, edge of network, VPC, load balancing, every instance and compute service, operating system, application, and code).
Therefore we should create a VPN connection with our VPC.
Giving us B and D as an answer.
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
By setting up a VPN (Virtual Private Network) connection, the company can establish a secure and encrypted connection between their on-premises network and the VPC in the AWS Cloud. This allows the applications running in the VPC to securely access on-premises resources as if they were on the same local network.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
AWS Direct Connect provides a dedicated network connection between the on-premises data center and AWS, bypassing the public internet. This enables a private and dedicated network connection, with higher bandwidth and lower latency compared to VPN connections. It allows for reliable and consistent access to on-premises resources from within the VPC.
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
These two options allow for the secure and reliable connection of an on-premises data center with the AWS Cloud. A VPN connection uses the internet to establish a secure, private network connection, while AWS Direct Connect bypasses the public internet altogether and provides a dedicated, private connection between the data center and AWS. Both can be used for hybrid cloud scenarios where applications in the AWS cloud need to communicate with on-premises resources.
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.close to the on-premises resources.
D. Set up an AWS Direct Connect connection between the on-premises data center and AWS.
B. Create a VPN connection between an on-premises device and a virtual private gateway in the VPC.
C. Use an Amazon CloudFront distribution and configure it to accelerate content delivery close.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
GonzaloD
Highly Voted 2 years, 5 months agofross
2 years, 5 months agoMizaan
2 years, 3 months agoleonardolondono
1 year, 10 months agoleonardolondono
1 year, 10 months agoDipa_2910
Most Recent 4 days, 11 hours agosonaljain
1 month, 1 week agoRaj2807
8 months, 2 weeks agoSausainis
11 months, 3 weeks agoEduardoSB
7 months agoearthlingab
10 months, 2 weeks agoReidy
1 year agoSoumya198725
1 year, 6 months agoPranava_GCP
1 year, 6 months agoBibs_s
1 year, 6 months agou_ways
1 year, 6 months agoman5484
1 year, 7 months agoHC89
1 year, 7 months agoESAJRR
1 year, 7 months agoLegendari
1 year, 7 months agoWarsame21
1 year, 7 months agotester0071
1 year, 7 months agobikshu
1 year, 9 months ago