Answer-first summary for fast verification
Answer: Create VPN attachments between the two transit gateways. Configure the VPN attachments to use BGP routing between the two transit gateways.
To meet the requirements of maximizing bandwidth, minimizing latency, and minimizing operational overhead for connecting the AWS infrastructure between the ap-southeast-2 and us-west-1 Regions, the best solution is to create VPN attachments between the two transit gateways and configure these VPN attachments to use BGP routing. This approach leverages AWS's managed VPN connections, which provide secure, high-throughput, and low-latency connectivity between Regions. BGP routing ensures that the most efficient paths are used for data transfer, optimizing performance. Peering transit gateways directly (Option B) is not supported by AWS as of the knowledge cutoff in 2023. Creating a VPN server in a VPC in each Region (Option C) would introduce unnecessary complexity and operational overhead. Attaching the VPCs in us-west-1 to the transit gateway in ap-southeast-2 (Option D) is not feasible due to the geographical distance and the need for a more efficient and scalable solution.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
An Australian ecommerce company, hosting all its services in the AWS Cloud, aims to expand its customer base to the western United States (US). The company’s current AWS architecture includes four AWS accounts with multiple VPCs in the ap-southeast-2 Region, all connected to a transit gateway in ap-southeast-2. Dedicated VPCs are used for each application service, along with centralized VPCs for security features like proxies, firewalls, and logging.
The company intends to replicate this infrastructure from ap-southeast-2 to the us-west-1 Region. A network engineer needs to establish connectivity between the applications in the two Regions while maximizing bandwidth, minimizing latency, and reducing operational overhead.
What solution will fulfill these requirements?
A
Create VPN attachments between the two transit gateways. Configure the VPN attachments to use BGP routing between the two transit gateways.
B
Peer the transit gateways in each Region. Configure routing between the two transit gateways for each Region's IP addresses.
C
Create a VPN server in a VPC in each Region. Update the routing to point to the VPN servers for the IP addresses in alternate Regions.
D
Attach the VPCs in us-west-1 to the transit gateway in ap-southeast-2.
No comments yet.