Q66 — AWS SAP-C02 Ch.2
Question 66 of 75 | ← Chapter 2
Q216. A company needs to establish a connection from its on-premises data center to AWS. The company needs to connect all of its VPCS that are located in different AWS Regions with transitive routing capabilities between VPC networks. The company also must reduce network outbound traffic costs, increase bandwidth throughput, and provide a consistent network experience for end users. Which solution will meet these requirements?
- A. Create an AWS Site-to-Site VPN connection between the on-premises data center and a new central VPC. Create VPC peering connections that initiate from the central VPC to all other VPCS.
- B. Create an AWS Direct Connect connection between the on-premises data center and AWS. Provision a transit VIF, and connect it to a Direct Connect gateway. Connect the Direct Connect gateway to all the other VPCS by using a transit gateway in each Region. ✓
- C. Create an AWS Site-to-Site VPN connection between the on-premises data center and a new central VPC. Use a transit gateway with dynamic routing. Connect the transit gateway to all other VPCS.
- D. Create an AWS Direct Connect connection between the on-premises data center and AWS. Establish an AWS Site-to-Site VPN connection between all VPCS in each Region. Create VPC peering connections that initiate from the central VPC to all other VPCS.
Correct Answer: B. Create an AWS Direct Connect connection between the on-premises data center and AWS. Provision a transit VIF, and connect it to a Direct Connect gateway. Connect the Direct Connect gateway to all the other VPCS by using a transit gateway in each Region.
Explanation
Option A suggests creating VPC peering connections that initiate from a central VPC to all other VPCs, but this approach does not support transitive routing between VPC networks or address the requirement to reduce network outbound traffic costs. Option C suggests using a transit gateway with dynamic routing to connect the central VPC to all other VPCs, which supports transitive routing between VPC networks but does not address the requirement to reduce network outbound traffic costs. Option D suggests establishing an AWS Site-to-Site VPN connection between all VPCs in each Region and creating VPC peering connections that initiate from a central VPC to all other VPCs, but this approach can add complexity and increase operational overhead. Therefore, option B provides the most suitable solution by creating an AWS Direct Connect connection between the on-premises data center and AWS, provisioning a transit VIF, and connecting it to a Direct Connect gateway. The Direct Connect gateway connects to all other VPCs using a transit gateway in each Region. This approach supports transitive routing between VPC networks, reduces network outbound traffic costs, increases bandwidth throughput, and provides a consistent network experience for end-users.