A company has hundreds of Amazon EC2 instances that are running in two production VPCs...

Question

A company has hundreds of Amazon EC2 instances that are running in two production VPCs across all Availability Zones in the us-east-1 Region. The production VPCs are named
VPC A and VPC B.
A new security regulation requires all traffic between production VPCs to be inspected before the traffic is routed to its final destination. The company deploys a new shared VPC that
contains a stateful firewall appliance and a transit gateway with a VPC attachment across all VPCs to route traffic between VPC A and VPC B through the firewall appliance for
inspection. During testing, the company notices that the transit gateway is dropping the traffic whenever the traffic is between two Availability Zones.
What should a network engineer do to fix this issue with the LEAST management overhead?

Accepted Answer

C. Enable transit gateway appliance mode on the VPC attachment in the shared VPC.

Answer

A. In the shared VPC, replace the VPC attachment with a VPN attachment. Create a VPN tunnel between the transit gateway and the firewall appliance. Configure BGP.

Answer

B. Enable transit gateway appliance mode on the VPC attachment in VPC A and VPC B.

Answer

D. In the shared VPC, configure one VPC peering connection to VPC A and another VPC peering connection to VPC B.

Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Exam ANS-C01 All Questions

Amazon Web Services AWS Certified Specialty ANS-C01 Question # 25 Topic 3 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts: