AWS Certified Advanced Networking - Specialty

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Configure a private VIF on the Direct Connect connection. Associate the private VIF with the VPC's virtual private gateway. Set up an AWS Site-to-Site VPN private IP VPN connection to the virtual private gateway.

The question requires a solution that ensures encrypted communication between an on-premises application and an application in an AWS VPC using private IP addresses, without traversing the public internet. The solution must also minimize operational overhead. Option A suggests configuring a private VIF on the Direct Connect connection, associating it with the VPC's virtual private gateway, and setting up an AWS Site-to-Site VPN private IP VPN connection to the virtual private gateway. This solution meets the requirements by using the Direct Connect connection for private, encrypted communication without internet traversal, and it leverages existing AWS services (Direct Connect and Site-to-Site VPN) to minimize operational overhead. Options B, C, and D introduce additional components like transit gateways and third-party firewalls, which increase complexity and operational overhead, making them less optimal solutions compared to Option A.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A company operates an on-premises application that must securely communicate with an application hosted in an AWS VPC using private IP addresses, without traversing the public internet. The company has a 1 Gbps AWS Direct Connect connection between its on-premises location and AWS.

Which solution meets the connectivity requirements with the minimal operational overhead?

Exam-Like

Configure a private VIF on the Direct Connect connection. Associate the private VIF with the VPC's virtual private gateway. Set up an AWS Site-to-Site VPN private IP VPN connection to the virtual private gateway.

100.0%

Create a transit gateway. Configure a transit VIF on the Direct Connect connection. Associate the transit VIF with a Direct Connect gateway. Associate the Direct Connect gateway with a new transit gateway. Set up an AWS Site-to-Site VPN private IP VPN connection to the transit gateway.

0.0%

Configure a public VIF on the Direct Connect connection. Associate the public VIF with a Direct Connect gateway. Associate the Direct Connect gateway with a new transit gateway. Set up an AWS Site-to-Site VPN private IP VPN connection to the transit gateway.

Create a transit gateway. Configure a transit VIF on the Direct Connect connection. Associate the transit VIF with a Direct Connect gateway. Associate the Direct Connect gateway with a new transit gateway. Set up a third-party firewall in a new VPC that is attached to the transit gateway. Set up a VPN connection to the third-party firewall.