Answer-first summary for fast verification
Answer: Use AWS Network Manager Route Analyzer to analyze routes in the transit gateway route tables. Verify that the VPC route tables are correct. Use VPC flow logs to analyze the IP traffic that security group rules and network ACL rules accept or reject in the VPC.
To troubleshoot the connectivity issue between two Amazon EC2 instances in different Regions connected via transit gateways, the network engineer should first analyze the routes in the transit gateway route tables and verify the correctness of the VPC route tables. This ensures that the routing between the Regions is correctly configured. Additionally, using VPC flow logs to analyze the IP traffic that security group rules and network ACL rules accept or reject in the VPC is crucial for identifying any potential blocks or misconfigurations in the security settings that might be causing the connectivity issue. Option C correctly suggests using AWS Network Manager Route Analyzer for analyzing routes in the transit gateway route tables, verifying the VPC route tables, and using VPC flow logs for traffic analysis. This comprehensive approach addresses both routing and security configurations, making it the most effective method for troubleshooting the described connectivity issue.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
What steps should the network engineer take to troubleshoot and resolve the connectivity issue between two Amazon EC2 instances located in different AWS Regions, which are connected via transit gateways?
A
Use AWS Network Manager Route Analyzer to analyze routes in the transit gateway route tables and in the VPC route tables. Use VPC flow logs to analyze the IP traffic that security group rules and network ACL rules accept or reject in the VPC.
B
Use AWS Network Manager Route Analyzer to analyze routes in the transit gateway route tables. Verify that the VPC route tables are correct. Use AWS Firewall Manager to analyze the IP traffic that security group rules and network ACL rules accept or reject in the VPC.
C
Use AWS Network Manager Route Analyzer to analyze routes in the transit gateway route tables. Verify that the VPC route tables are correct. Use VPC flow logs to analyze the IP traffic that security group rules and network ACL rules accept or reject in the VPC.
D
Use VPC Reachability Analyzer to analyze routes in the transit gateway route tables. Verify that the VPC route tables are correct. Use VPC flow logs to analyze the IP traffic that security group rules and network ACL rules accept or reject in the VPC.
No comments yet.