AWS Certified Solutions Architect - Associate

Get started today

Ultimate access to all questions.

Deep dive into the quiz with AI chat providers.

We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.

A company is running several business applications in three separate VPCs within the us-east-1 Region. The applications must be able to communicate between VPCs. The applications also must be able to consistently send hundreds of gigabytes of data each day to a latency-sensitive application that runs in a single on-premises data center.

A solutions architect needs to design a network connectivity solution that maximizes cost-effectiveness.

Which solution meets these requirements?

Other

Community

UAnonymous

Last updated: February 23, 2026 at 11:39

Configure three AWS Site-to-Site VPN connections from the data center to AWS. Establish connectivity by configuring one VPN connection for each VPC.

Launch a third-party virtual network appliance in each VPC. Establish an IPsec VPN tunnel between the data center and each virtual appliance.

Set up three AWS Direct Connect connections from the data center to a Direct Connect gateway in us-east-1. Establish connectivity by configuring each VPC to use one of the Direct Connect connections.

Set up one AWS Direct Connect connection from the data center to AWS. Create a transit gateway, and attach each VPC to the transit gateway. Establish connectivity between the Direct Connect connection and the transit gateway.

Explanation:

Explanation

Option D is the correct answer because it provides the most cost-effective solution that meets all requirements:

Key Requirements Analysis:

Three separate VPCs in us-east-1 Region
Inter-VPC communication required
Consistent data transfer of hundreds of gigabytes daily
Latency-sensitive application on-premises
Maximize cost-effectiveness

Why Option D is Best:

Single Direct Connect Connection: Using one Direct Connect connection is more cost-effective than three separate connections (Option C) or three VPN connections (Option A).
Transit Gateway Benefits:
- Provides centralized connectivity between all three VPCs
- Enables inter-VPC communication through the transit gateway
- Single connection point for the Direct Connect
- Simplifies network management
Performance for Latency-Sensitive Applications:
- Direct Connect provides dedicated, low-latency connectivity
- Consistent performance for hundreds of gigabytes of daily data transfer
- More reliable than VPN connections which can have variable latency
Cost Optimization:
- One Direct Connect connection instead of three
- No need for third-party virtual appliances (Option B)
- No multiple VPN connections (Option A)
- No multiple Direct Connect connections (Option C)

Why Other Options Are Not Optimal:

Option A: Three VPN connections would be expensive, have higher latency, and less consistent performance for latency-sensitive applications transferring large amounts of data.

Option B: Third-party virtual appliances add licensing costs, management overhead, and potential performance bottlenecks.

Option C: Three Direct Connect connections are unnecessarily expensive when a single connection with transit gateway can serve all VPCs.

Architecture Components:

AWS Direct Connect: Provides dedicated network connection from on-premises to AWS
Transit Gateway: Central network hub connecting multiple VPCs and the Direct Connect connection
VPC Attachments: Each VPC connects to the transit gateway
Direct Connect Gateway: Connects the Direct Connect to the transit gateway

This solution provides the best balance of performance, reliability, and cost-effectiveness for the given requirements.

Powered ByGPT-5.2

Comments

Loading comments...