Learn how to set up an automated solution using Amazon CloudWatch and AWS Lambda to create high-priority tickets in your internal ticketing tool when your AWS Site-to-Site VPN tunnel goes down.
Table of Contents
Question
A company has internal hybrid applications that have resources in the AWS Cloud and on premises. Users report that the applications sometimes are not available. The company has configured an Amazon CloudWatch alarm to monitor the tunnel status of its AWS Site-to-Site VPN connection.
A SysOps administrator must implement a solution that creates a high-priority ticket in an internal ticketing tool when the VPN tunnel is down.
Which solution will meet this requirement?
A. Create an Amazon Simple Notification Service (Amazon SNS) topic for the CloudWatch alarm. Subscribe the ticketing tool’s endpoint to the SNS topic.
B. Create an Amazon Simple Queue Service (Amazon SQS) queue as the target for the CloudWatch alarm. Configure the queue to transform messages into tickets and to post the tickets to the ticketing tool’s endpoint.
C. Create an AWS Lambda function. Configure the CloudWatch alarm to directly invoke the Lambda function to create individual tickets in the ticketing tool.
D. Create an Amazon EventBridge rule that monitors the VPN tunnel directly. Configure the ticketing tool’s endpoint as the target of the rule.
Answer
The best solution to create high-priority tickets in an internal ticketing tool when the AWS Site-to-Site VPN tunnel is down is option C: Create an AWS Lambda function and configure the CloudWatch alarm to directly invoke the Lambda function to create individual tickets in the ticketing tool.
C. Create an AWS Lambda function. Configure the CloudWatch alarm to directly invoke the Lambda function to create individual tickets in the ticketing tool.
Explanation
AWS Lambda allows you to run code without provisioning or managing servers. By creating a Lambda function, you can write custom logic to interact with your internal ticketing tool’s API and create tickets based on the CloudWatch alarm trigger.
When the CloudWatch alarm detects that the VPN tunnel is down, it can be configured to directly invoke the Lambda function. The Lambda function will then execute the necessary code to create a high-priority ticket in your ticketing system.
This solution provides a serverless and scalable approach to automate the ticket creation process. It eliminates the need for additional components like Amazon SNS or Amazon SQS, simplifying the architecture and reducing potential points of failure.
By configuring the CloudWatch alarm to trigger the Lambda function directly, you ensure that tickets are created immediately when the VPN tunnel issue is detected, allowing your team to respond promptly and minimize application downtime.
Amazon AWS Certified SysOps Administrator – Associate certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Amazon AWS Certified SysOps Administrator – Associate exam and earn Amazon AWS Certified SysOps Administrator – Associate certification.