Answer-first summary for fast verification
Answer: Create a new AWS Direct Connect connection with a private VIF between the on-premises data center and the AWS Cloud. Update the customer gateway device to use the new Direct Connect connection. Delete the existing Site-to-Site VPN connection.
The question addresses the issue of congestion and performance degradation over an internet-based Site-to-Site VPN connection between an on-premises data center and AWS. The requirement is to mitigate these issues quickly with minimal administrative effort. Option A suggests enabling acceleration on the existing VPN connection, which is a straightforward approach but may not significantly reduce congestion. Option B involves setting up a transit gateway and creating a new accelerated VPN connection, which is more complex and time-consuming than necessary. Option C proposes creating a new accelerated VPN connection to the existing virtual private gateway, which is simpler than option B but still involves more steps than necessary. Option D recommends establishing a Direct Connect connection with a private VIF, which provides a dedicated network connection between the on-premises data center and AWS, significantly reducing congestion and improving performance. This solution meets the requirement for minimal administrative effort and quick implementation, as Direct Connect offers a more reliable and consistent network experience compared to VPN over the internet. Therefore, the best solution is to create a new AWS Direct Connect connection.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company has established an AWS Site-to-Site VPN connection between its on-premises data center and a virtual private gateway in the AWS Cloud. Due to internet congestion, the company is facing availability and performance challenges as traffic traverses the internet before reaching AWS. A network engineer needs to minimize these issues for the connection as quickly as possible with minimal administrative effort.
Which solution will meet these requirements?
A
Edit the existing Site-to-Site VPN connection by enabling acceleration. Stop and start the VPN service on the customer gateway for the new setting to take effect.
B
Configure a transit gateway in the same AWS Region as the existing virtual private gateway. Create a new accelerated Site-to-Site VPN connection. Connect the new connection to the transit gateway by using a VPN attachment. Update the customer gateway device to use the new Site to Site VPN connection. Delete the existing Site-to-Site VPN connection
C
Create a new accelerated Site-to-Site VPN connection. Connect the new Site-to-Site VPN connection to the existing virtual private gateway. Update the customer gateway device to use the new Site-to-Site VPN connection. Delete the existing Site-to-Site VPN connection.
D
Create a new AWS Direct Connect connection with a private VIF between the on-premises data center and the AWS Cloud. Update the customer gateway device to use the new Direct Connect connection. Delete the existing Site-to-Site VPN connection.