Answer-first summary for fast verification
Answer: Assign a new CIDR block to the transit gateway. Create a new VPC for the SD-WAN hub virtual appliance. Attach the new VPC to the transit gateway with a VPC attachment. Add a transit gateway Connect attachment. Create a Connect peer and specify the GRE and BGP parameters. Create a route in the appropriate VPC for the SD-WAN hub virtual appliance to route to the transit gateway.
To meet the requirement of supporting at least 5 Gbps of throughput from the SD-WAN hub virtual appliance to other VPCs attached to the transit gateway, the solution must leverage AWS Transit Gateway's high throughput capabilities. Option B is the correct choice because it involves creating a new VPC for the SD-WAN hub virtual appliance, attaching it to the transit gateway with a VPC attachment, and then adding a Transit Gateway Connect attachment. This setup allows for the use of GRE (Generic Routing Encapsulation) and BGP (Border Gateway Protocol) over the Connect peer, which is designed to support high throughput connections. This method is more efficient and scalable for high throughput requirements compared to IPsec VPN connections, which are limited by the bandwidth of the VPN connections and the overhead of encryption. Option A and C suggest using IPsec VPN connections, which may not reliably support the required 5 Gbps throughput due to the inherent limitations of VPN connections. Option D, while similar to B, specifies VXLAN instead of GRE, which is not the standard protocol used with Transit Gateway Connect attachments for this purpose.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company is deploying multiple software-defined WAN (SD-WAN) sites and has already set up an AWS Transit Gateway in the necessary AWS Region. A network engineer must deploy the SD-WAN hub virtual appliance into a VPC connected to the transit gateway, ensuring the solution supports a minimum of 5 Gbps throughput between the SD-WAN hub virtual appliance and other VPCs attached to the transit gateway.
Which solution meets these requirements?
A
Create a new VPC for the SD-WAN hub virtual appliance. Create two IPsec VPN connections between the SD-WAN hub virtual appliance and the transit gateway. Configure BGP over the IPsec VPN connections
B
Assign a new CIDR block to the transit gateway. Create a new VPC for the SD-WAN hub virtual appliance. Attach the new VPC to the transit gateway with a VPC attachment. Add a transit gateway Connect attachment. Create a Connect peer and specify the GRE and BGP parameters. Create a route in the appropriate VPC for the SD-WAN hub virtual appliance to route to the transit gateway.
C
Create a new VPC for the SD-WAN hub virtual appliance. Attach the new VPC to the transit gateway with a VPC attachment. Create two IPsec VPN connections between the SD-WAN hub virtual appliance and the transit gateway. Configure BGP over the IPsec VPN connections.
D
Assign a new CIDR block to the transit gateway. Create a new VPC for the SD-WAN hub virtual appliance. Attach the new VPC to the transit gateway with a VPC attachment. Add a transit gateway Connect attachment. Create a Connect peer and specify the VXLAN and BGP parameters. Create a route in the appropriate VPC for the SD-WAN hub virtual appliance to route to the transit gateway.