AWS Certified Solutions Architect - Associate
Get started today
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
A solutions architect configured a VPC that has a small range of IP addresses. The number of Amazon EC2 instances that are in the VPC is increasing, and there is an insufficient number of IP addresses for future workloads.
Which solution resolves this issue with the LEAST operational overhead?
Other
Community
UAnonymous
A
Add an additional IPv4 CIDR block to increase the number of IP addresses and create additional subnets in the VPC. Create new resources in the new subnets by using the new CIDR.
B
Create a second VPC with additional subnets. Use a peering connection to connect the second VPC with the first VPC. Update the routes and create new resources in the subnets of the second VPC.
C
Use AWS Transit Gateway to add a transit gateway and connect a second VPC with the first VPC. Update the routes of the transit gateway and VPCs. Create new resources in the subnets of the second VPC.
D
Create a second VPC. Create a Site-to-Site VPN connection between the first VPC and the second VPC by using a VPN-hosted solution on Amazon EC2 and a virtual private gateway. Update the route between VPCs to the traffic through the VPN. Create new resources in the subnets of the second VPC.
Explanation:
Explanation
Correct Answer: A
Why Option A is correct:
- Least operational overhead: Adding an additional IPv4 CIDR block to an existing VPC is the simplest and most straightforward solution.
- No new networking components needed: This approach doesn't require creating new VPCs, peering connections, transit gateways, or VPN connections.
- Seamless integration: The new CIDR block becomes part of the existing VPC, and resources can communicate within the same VPC without complex routing configurations.
- AWS best practice: AWS allows up to 5 IPv4 CIDR blocks per VPC, making this a scalable solution.
Why other options are incorrect:
- Option B: Creating a second VPC with VPC peering adds complexity with separate VPC management, route table updates, and peering connection maintenance.
- Option C: Using AWS Transit Gateway introduces additional costs and complexity for managing transit gateway attachments, route tables, and routing configurations.
- Option D: Creating a Site-to-Site VPN with EC2-hosted VPN solution is the most complex option, requiring VPN software management, virtual private gateway setup, and complex routing.
Key AWS Concepts:
- VPCs can have multiple IPv4 CIDR blocks (up to 5)
- Each CIDR block must be unique and non-overlapping
- Subnets can be created from any CIDR block in the VPC
- Resources in different subnets within the same VPC can communicate without additional networking components
Operational Overhead Comparison:
- Option A: Minimal - just add CIDR and create subnets
- Option B: Moderate - new VPC, peering, route updates
- Option C: High - transit gateway, attachments, complex routing
- Option D: Highest - VPN software, EC2 management, complex networking
Comments
Loading comments...