Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 264 discussion

ALB performs health checks on the EC2 instances, so it will only route traffic to healthy instances. This avoids the timeout errors. ALB provides load balancing across the instances, improving performance and availability. Route 53 routes to the ALB DNS name, so you don't have to manage records for each EC2 instance. This is a standard and robust architecture for public-facing web applications. The ALB acts as the entry point and handles health checks and scaling.

It is not clear from the question whether the 10 EC2s are running within the same region. ALB can only direct traffic within region, while route 53 can route traffic to multiple locations, hence C and D are wrong.

At first sight I thought option D is too complicated, but come to think of it, this should be the final answer. An ALB is specifically designed for this use case. Option B is not suited for scenarios with multiple EC2 instances in the same environment because it works on a primary-secondary model, not load balancing across multiple instances.

D for sure

Those who are confused between A and D, A is wrong as you can't associate a health check with Simple routing policy record.

D is the best answer

If you focus on the question, both A and D seems to be correct. A is correct because simple routing policy for health check is doable BUT it is also wrong because we don't know how to determine the health of instance. D is correct because " The company occasionally experiences a timeout error when attempting to browse the application" which suggest aplication is being acccessed by a browser with means it's HTTP based and ALB is better for HTTP based healthchecks. A web application timing out is not necessarily unhealthy instance, strictly speaking. It's just bad web application running on a healthy instance! So A may not be correct also.

Although B can work as well, but it's nor a professional choice to associate the healthcheck with 10 EC2 instances, ALB is better option here. A is incorect: Simple Routing Policies Can’t be associated with Health Checks C is incorrect: Cloudfront is for caching content which is irrelevant.

A meets the requirement ("overcome these timeout errors") without any other changes. "If you configure health checking for all the records in a group of records that have the same name, the same type (such as A or AAAA), and the same routing policy (such as weighted or failover), Route 53 responds to DNS queries by choosing a healthy record and returning the applicable value from that record. (https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/health-checks-how-route-53-chooses-records.html)

B is wrong. The DNS cache in clients could drive to timeouts. With ALB this issue won't happen since the DNS register will be the same and ALB will take care of unhealty nodes.

B is wrong. The DNS cache in clients could drive to timeouts. With ALB this issue won't happen since the DNS register will be the same and ALB will take care of unhealty nodes.

D. **Application Load Balancer (ALB) with Health Checks, Routed via Route 53**: - Creating an ALB in front of the EC2 instances and configuring health checks on the ALB will ensure that only healthy instances receive traffic. Route 53 can then direct traffic to the ALB, which in turn, routes traffic to healthy instances based on the health check results. Among the provided options, the one that directly addresses the issue of routing traffic only to healthy instances is: **D. Create an Application Load Balancer (ALB) with a health check in front of the EC2 instances. Route to the ALB from Route 53.**

Clearly the question is all about Amazon Route 53 that has Failover routing policy that is used when you want to configure active-passive failover.

i was looking at A, but indeed D is the best option, because the usually the TTL of the records is at least 60 seconds (nobody sets lower unless testing something ,because there is a charge per number of unique requests. ALB health check can be set as low as desired, which helps exclude the problematic ec2 faster than the DNS TTL expires

By creating an ALB and configuring health checks, the architect ensures that only healthy instances receive traffic. The ALB periodically checks the health of the EC2 instances based on the configured health check settings. Routing traffic to the ALB from Route 53 ensures that DNS queries return the IP address of the ALB instead of individual instances. This allows the ALB to distribute traffic only to healthy instances, avoiding timeouts caused by unhealthy instances. A & B: While associating health checks with each record can help identify unhealthy instances, it does not provide automatic load balancing and distribution of traffic to healthy instances. C: While CloudFront can improve performance and availability, it is primarily a CDN and may not directly address the issue of load balancing and distributing traffic to healthy instances. Therefore, option D is the most appropriate solution to overcome the timeout errors by implementing an ALB with health checks and routing traffic through Route 53.

I believe both C and D will work, but C seems less complex. hopefully somebody here is more advanced(not an old student learning AWS like me) to explain why not C.

Option D allows for the creation of an Application Load Balancer which can detect unhealthy instances and redirect traffic away from them.