Home › Forums › AWS › AWS Certified Solutions Architect Associate › Is the “Correct answer” correct?
-
Is the “Correct answer” correct?
Nikee-TutorialsDojo updated 1 month, 1 week ago 2 Members · 2 Posts -
For the question below “A company has established a dedicated network connection from its on-premises data center to AWS Cloud using AWS Direct Connect (DX). The core network services, such as the Domain Name System (DNS) service and Active Directory services, are all hosted on-premises. The company has new AWS accounts that will also require consistent and dedicated access to these network services.
Which of the following can satisfy this requirement with the LEAST amount of operational overhead and in a cost-effective manner?”
The correct answer is to set up a Direct Connect Gateway and connect it to a Transit Gateway.
My question is why is a Transit Gateway required if the question does not mentioned the need for cross-VPC communication?
-
Hello lijingen,
Thank you very much for your feedback!
The suggestion to use a Transit Gateway in this solution is aimed at providing a streamlined and scalable network architecture, particularly suited for organizations that manage multiple AWS accounts. Although the question doesn’t mention cross-VPC communication, Transit Gateway plays a key role in centralizing and simplifying connectivity for complex environments.
To explain further, Transit Gateway allows organizations to manage routing centrally between multiple VPCs and on-premises networks across various AWS accounts. This centralized approach reduces the operational complexity that can arise when separate, individual connections are established for each account. By leveraging Transit Gateway, the company can configure connectivity between all AWS accounts and the on-premises network through a single, manageable point. This helps ensure consistent and reliable access to on-premises resources, such as DNS and Active Directory, without setting up separate configurations for each AWS account.
Furthermore, the solution becomes more cost-effective and efficient over time by using Transit Gateway. Instead of maintaining multiple individual VPN or Direct Connect connections for each AWS account, Transit Gateway allows each AWS account to access the on-premises network over the same Direct Connect link, reducing costs and the operational burden of managing a more complex network architecture.
Additionally, Transit Gateway offers the company flexibility for future needs. While the current requirement focuses on accessing on-premises resources, the Transit Gateway can easily support cross-VPC or cross-account communication if those needs arise later. This allows the company to scale its network without extensive reconfiguration, offering a future-proof solution that accommodates potential growth.
I hope this explanation provides a clear rationale for why Transit Gateway was included in the solution. Please feel free to reach out if you have further questions. We’re always here to help!
Regards,
Nikee @ Tutorials Dojo
Log in to reply.