Ends in
00
days
00
hrs
00
mins
00
secs
SHOP NOW

🚀 25% OFF All Practice Exams, Video Courses, & eBooks – Cyber Sale Extension!

Find answers, ask questions, and connect with our
community around the world.

  • Samli

    Member
    July 23, 2024 at 8:59 pm

    FOR BELOW QUESTION YOU MENTIONED CREATING VPN IS THE RIGHT ANSWER HERE. BUT I BELIEVE BELOW IS THE RIGHT ANSWER.

    Establish another 1 Gbps AWS Direct Connect connection with corresponding private Virtual Interfaces (VIFs) to connect all of the 10 VPCs individually. Set up a Border Gateway Protocol (BGP) peering session for all of the VIFs.

    Reason I think its answer as VPN connections typically have lower throughput compared to Direct Connect and managing multiple vpn will add complexity. Please help.

    Category: CSAP – Design for New Solutions

    A multinational investment bank has a hybrid cloud architecture that uses a single 1 Gbps AWS Direct Connect connection to integrate their on-premises network to AWS Cloud. The bank has a total of 10 VPCs which are all connected to their on-premises data center via the same Direct Connect connection that you manage. Based on the recent IT audit, the existing network setup has a single point of failure which needs to be addressed immediately.

    Which of the following is the MOST cost-effective solution that you should implement in order to improve the connection redundancy of your hybrid network?

    <ul type=”disc”>

  • Establish another 1 Gbps AWS Direct Connect connection using a public Virtual Interface (VIF). Prepare a VPN tunnel that will terminate on the virtual private gateway (VGW) of the respective VPC using the public VIF. Handle the failover to the VPN connection through the use of BGP.
  • Establish a new point-to-point Multiprotocol Label Switching (MPLS) connection to all of your 10 VPCs. Configure BGP to use this new connection with an active/passive routing.
  • Establish VPN tunnels from your on-premises data center to each of the 10 VPCs. Terminate each VPN tunnel connection at the virtual private gateway (VGW) of the respective VPC. Configure BGP for route management.
  • <ul type=”disc”>

  • Establish another 1 Gbps AWS Direct Connect connection with corresponding private Virtual Interfaces (VIFs) to connect all of the 10 VPCs individually. Set up a Border Gateway Protocol (BGP) peering session for all of the VIFs.
  • Samli

    Member
    July 24, 2024 at 10:27 pm

    Any update???

  • Neil-TutorialsDojo

    Member
    July 25, 2024 at 9:55 am

    Hello Samli,

    Good Day!

    Regarding your query, the question is focused on identifying the most cost-effective solution to improve connection redundancy. Let’s compare the mentioned answer vs your answer:

    Establish another 1 Gbps AWS Direct Connect connection with corresponding private Virtual Interfaces (VIFs) involves setting up an additional 1 Gbps Direct Connect connection specifically for connecting to each of the 10 VPCs individually via private VIFs. It provides high performance and reliability, but comes with significant costs and complexity due to the need for multiple VIFs and BGP peering. It is generally more suitable for scenarios where high performance and network stability are critical and budget constraints are not as stringent.

    —Establish VPN tunnels from your on-premises data center to each of the 10 VPCs— is generally the most budget-friendly approach. VPN connections typically have lower costs compared to Direct Connect (check out the pricing here versus Direct Connect). Plus, terminating VPN tunnels on the VGW is a simpler setup compared to
    managing multiple Direct Connect virtual interfaces (VIFs) and BGP
    peering sessions. Even though you’d have multiple VPN connections, the overall cost and setup complexity remain lower.

    So, for a balance between cost and complexity, Establish VPN tunnels—is likely your best option. It keeps things simple and cost-effective while still addressing the need for redundancy.

    I hope this helps. If you have more clarification, pls let us know.

    Regards,
    Neil @ Tutorials Dojo

  • Viewing 1 - 3 of 3 replies

    Log in to reply.

    Original Post
    0 of 0 posts June 2018
    Now
    Skip to content