Example Corp. has an on-premises data center connected to a VPC named VPC A via an AWS Site-To-Site VPN. The on-premises servers can access VPC A. Example Corp. has recently acquired AnyCompany, which has a VPC named VPC B. There is no IP address overlap between these networks, and VPC A and VPC B are peered. Example Corp. aims to enable its on-premises servers to access VPC B. The network ACLs and security groups have been properly configured. What is the most operationally efficient solution to achieve this connectivity?

Exam-Like

Create a transit gateway, attach the Site-to-Site VPN, VPC A, and VPC B to it, and update the transit gateway route tables for all networks to include IP range routes for the other networks.

45.5%

Create a transit gateway, establish a Site-to-Site VPN connection between the on-premises network and VPC B, and connect the VPN to the transit gateway. Add a route to direct traffic to the peered VPCs and an authorization rule to allow access to VPCs A and B.

27.3%

Update the route tables for the Site-to-Site VPN and both VPCs for all three networks, configure BGP propagation for these networks, and wait for BGP propagation to complete (up to 5 minutes).

9.1%

Modify the Site-to-Site VPN’s virtual private gateway to include both VPC A and VPC B, and split the virtual private gateway's routers between the two VPCs.

18.2%

AWS Certified Solutions Architect - Professional

Comments

Get started today