Ends in
00
days
00
hrs
00
mins
00
secs
SHOP NOW

🚀 25% OFF All Practice Exams, Video Courses, & eBooks – Cyber Sale Extension!

Find answers, ask questions, and connect with our
community around the world.

Home Forums AWS AWS Certified Solutions Architect Professional Review Set 2 – VPC peering cfgs – route to specific addresses.

  • Review Set 2 – VPC peering cfgs – route to specific addresses.

  • AudreyST

    Member
    August 8, 2024 at 1:27 pm

    <div>

    CSAP: Design for New Solutions. Q: “A company has three AWS accounts each with its own VPCs as shown in the diagram. VPC-B and VPC-C have matching CIDR blocks …Which… allow VPC-A to communicate with the database instance in VPC-B while being able to communicate with all resources on VPC-C?” (See 1st diagram).

    A: “On VPC-A, add a static route for VPC-B CIDR (10.0.0.77/32) with the target pcx-aaaabbbb and another static route for VPC-C CIDR (10.0.0.0/16) with the target pcx-aaaacccc. On VPC-B, add a static route for VPC-A CIDR (172.16.0.0/24) with the target pcx-aaaabbbb. On VPC-C, add a static route for VPC-A CIDR (172.16.0.0/24) with the target pcx-aaaacccc.”

    However, In the explanation section, the routes from VPC-B & VPC-C to VPC-A are 172.16.0.0/16 pcx-aaaabbbb & 172.16.0.0/16 pcx-aaaacccc, respectively, difference from the /24 in the answer (See 2nd diagram attached). A similar example in AWS doc matches the explanation (using /16). Is there a typo in the answer? Is 172.16.0.0/24 or 172.16.0.0/16 the correct answer?

    </div>

  • Neil-TutorialsDojo

    Member
    August 12, 2024 at 10:19 am

    Hello AudreyST,

    Good day!

    Thank you for your question.

    The /16 CIDR block represents the entire address range for the VPC. Using /16
    in the route table ensures that all IP addresses within VPC-A are reachable from VPC-B and VPC-C. In contrast, the /24 CIDR block used for Subnet-A specifies a smaller, specific address range within VPC-A.

    Both approaches for routing are correct based on the given scenario, and the choice depends on whether you need to target specific subnets or the entire VPC.

    I understand the confusion and apologize for any misunderstanding this may have caused. We will update the question as soon as possible.

    Thank you for bringing this to our attention!

    Regards,
    Neil @ tutorials dojo

  • Neil-TutorialsDojo

    Member
    August 12, 2024 at 10:35 am

    Hello AudreyST,
    This question has been updated. It should be reflected to the portal soon. Thank you

Viewing 1 - 3 of 3 replies

Log in to reply.

Original Post
0 of 0 posts June 2018
Now
Skip to content