Answer-first summary for fast verification
Answer: Create a transit gateway and a Direct Connect gateway. Associate the transit gateway with the Direct Connect gateway. Attach all the new VPCs to the transit gateway., For each new VPC, create a new Direct Connect private VIF to a Direct Connect gateway. Associate all VPCs with the Direct Connect gateway., Assign a private IP CIDR block to the transit gateway.
To meet the company's requirements with the least operational overhead, the following steps are necessary: A. Create a transit gateway and a Direct Connect gateway. Associate the transit gateway with the Direct Connect gateway. Attach all the new VPCs to the transit gateway. This setup allows for centralized management of the connections between the on-premises location and the VPCs, reducing operational overhead. B. For each new VPC, create a new Direct Connect private VIF to a Direct Connect gateway. Associate all VPCs with the Direct Connect gateway. This ensures that the connections do not use public IP addresses, maintaining the required level of encryption. C. Assign a private IP CIDR block to the transit gateway. This is necessary to ensure that the connections between the on-premises location and the VPCs use private IP addresses, as required. These steps together provide a scalable, secure, and efficient solution for connecting the on-premises location to the new VPCs without using public IP addresses and maintaining the required level of encryption.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company currently uses AWS Site-to-Site VPN connections to encrypt traffic between its on-premises location and a single VPC, utilizing two 1 Gbps AWS Direct Connect connections with public VIFs. The company intends to add 15 more VPCs in the same AWS Region while maintaining the same encryption level for each connection between the on-premises location and the new VPCs. The new connections must avoid using public IP addresses, and the bandwidth of the Site-to-Site VPN connections will stay below the current provisioned speed.
Which combination of steps will fulfill these requirements with the LEAST operational overhead? (Choose three.)
A
Create a transit gateway and a Direct Connect gateway. Associate the transit gateway with the Direct Connect gateway. Attach all the new VPCs to the transit gateway.
B
For each new VPC, create a new Direct Connect private VIF to a Direct Connect gateway. Associate all VPCs with the Direct Connect gateway.
C
Assign a private IP CIDR block to the transit gateway.
D
Assign a public IP CIDR block to the transit gateway.
E
Create a transit VIF to the Direct Connect gateway. Create a Site-to-Site VPN private IP VPN connection.