A SaaS company is transitioning its private SaaS application to AWS. The company has numerous customers connecting to multiple data centers via VPN tunnels. As the customer base has expanded, managing routing, segmentation, and complex NAT rules has become increasingly challenging.

After migrating to AWS, the company's AWS-based customers need direct access to the SaaS application from their VPCs, while on-premises customers must continue accessing the application through IPsec-encrypted tunnels.

What solution will fulfill these requirements?

Exam-Like

Connect the AWS customer VPCs to a shared transit gateway. Use AWS Site-to-Site VPN connections to the transit gateway for the on-premises customers

75.0%

Use AWS PrivateLink to connect the AWS customers. Use a third-party routing appliance in the SaaS application VPC to terminate onpremises Site-to-Site VPN connections.

25.0%

Peer each AWS customer's VPCs to the VPC that hosts the SaaS application. Create AWS Site-to-Site VPN connections on the SaaS VPC virtual private gateway.

0.0%

Use Site-to-Site VPN tunnels to connect each AWS customer's VPCs to the VPC that hosts the SaaS application. Use AWS Site-to-Site VPN to connect the on-premises customers.

0.0%

AWS Certified Advanced Networking - Specialty

Get started today

Comments