AWS Certified Advanced Networking - Specialty

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Delete the static routes that were in the transit gateway route table to send traffic to the remote VPC and enable route propagation instead., Create a new route destined to 10.0.0.0/8 in both production VPC route tables with the Region transit gateway as the target.

The issue described in the scenario is likely due to the static routes configured in the transit gateway route tables. Static routes can sometimes cause issues with routing between VPCs across different regions, especially if the CIDR blocks overlap or if there are more specific routes that need to be considered. Enabling route propagation allows the transit gateway to dynamically learn routes from the attached VPCs, which can help in achieving the required connectivity without manually specifying static routes. This dynamic learning ensures that the most accurate and efficient routing paths are used, which is particularly important in a multi-region setup with multiple VPCs. Therefore, deleting the static routes and enabling route propagation (Option B) is the correct approach to resolve the connectivity issue. Additionally, creating a new route destined to 10.0.0.0/8 in both production VPC route tables with the Region transit gateway as the target (Option C) can also help in ensuring that traffic is correctly routed between the VPCs across different regions. This approach provides a more comprehensive routing solution by covering a wider range of IP addresses that might be used within the VPCs.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A company is migrating to AWS and intends to use multiple VPCs across multiple AWS Regions. A network engineer needs to establish connectivity between the eu-west-1 and eu-central-1 Regions to the company headquarters and branch office, respectively.

The network engineer created a production VPC, Prod A, with a CIDR block of 10.0.0.0/16 in an account in eu-west-1, and another production VPC, Prod B, with a CIDR block of 10.1.0.0/16 in a different account in eu-central-1.

The network engineer performed the following steps to establish connectivity:

Created a transit gateway in each Region

Shared and accepted the transit gateways with the production accounts in both Regions

Configured a peering attachment between the transit gateways

Attached both VPCs to their respective Region's transit gateway

Created transit gateway route tables and associated the attachments with the route tables

Configured static routes in both transit gateway route tables to direct traffic to the remote VPC in the other Region

Enabled route propagation on the VPC route tables in each Region

After completing the configuration, the network engineer attempted to connect from Prod A to Prod B but was unsuccessful.

What steps should the network engineer take to ensure the required connectivity is achieved?

Exam-Like

Modify the IP address of the peering attachment to a wider range.

Delete the static routes that were in the transit gateway route table to send traffic to the remote VPC and enable route propagation instead.