Learn how to design a cost-effective hybrid network architecture using AWS Transit Gateway and Direct Connect for workloads requiring single-digit latencies between AWS Cloud and on-premises data centers.
Table of Contents
Question
A company needs to design a hybrid network architecture. The company’s workloads are currently stored in the AWS Cloud and in on-premises data centers. The workloads require single-digit latencies to communicate. The company uses an AWS Transit Gateway transit gateway to connect multiple VPCs.
Which combination of steps will meet these requirements MOST cost-effectively? (Choose two.)
A. Establish an AWS Site-to-Site VPN connection to each VPC.
B. Associate an AWS Direct Connect gateway with the transit gateway that is attached to the VPCs.
C. Establish an AWS Site-to-Site VPN connection to an AWS Direct Connect gateway.
D. Establish an AWS Direct Connect connection. Create a transit virtual interface (VIF) to a Direct Connect gateway.
E. Associate AWS Site-to-Site VPN connections with the transit gateway that is attached to the VPCs.
Answer
To design a cost-effective hybrid network architecture that allows workloads in AWS Cloud and on-premises data centers to communicate with single-digit latencies, the most suitable combination of steps is:
B. Associate an AWS Direct Connect gateway with the transit gateway that is attached to the VPCs.
D. Establish an AWS Direct Connect connection. Create a transit virtual interface (VIF) to a Direct Connect gateway.
Explanation
AWS Direct Connect provides a dedicated, private connection between your on-premises network and AWS, bypassing the public internet. This ensures low-latency, consistent network performance, and enhanced security. By establishing an AWS Direct Connect connection (Step D), you create a direct, dedicated link between your on-premises data center and AWS.
Next, you create a transit virtual interface (VIF) to a Direct Connect gateway. The Direct Connect gateway acts as a hub that allows you to connect your Direct Connect connection to multiple VPCs in different AWS Regions.
By associating the AWS Direct Connect gateway with the transit gateway that is attached to the VPCs (Step B), you enable seamless connectivity between your on-premises network and multiple VPCs. The AWS Transit Gateway acts as a central hub for connecting VPCs and on-premises networks, simplifying network management and reducing the need for complex peering relationships.
This combination of AWS Direct Connect and Transit Gateway provides a cost-effective solution for hybrid network architectures. It eliminates the need for individual VPN connections to each VPC (Step A) or a separate VPN connection to the Direct Connect gateway (Step C), which can be more complex to manage and may introduce additional latency.
By leveraging the dedicated, high-speed connection of AWS Direct Connect and the centralized connectivity of AWS Transit Gateway, you can achieve single-digit latencies between your workloads in AWS Cloud and on-premises data centers while minimizing costs and simplifying network management.
Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Amazon AWS Certified Solutions Architect – Associate SAA-C03 exam and earn Amazon AWS Certified Solutions Architect – Associate SAA-C03 certification.