Examice

Exam ANS-C01 All QuestionsBrowse all questions from this exam

Question 66

A company is using an AWS Site-to-Site VPN connection from the company's on-premises data center to a virtual private gateway in the AWS Cloud Because of congestion, the company is experiencing availability and performance issues as traffic travels across the internet before the traffic reaches AWS. A network engineer must reduce these issues for the connection as quickly as possible with minimum administration effort.

Which solution will meet these requirements?

Edit the existing Site-to-Site VPN connection by enabling acceleration. Stop and start the VPN service on the customer gateway for the new setting to take effect.

Configure a transit gateway in the same AWS Region as the existing virtual private gateway. Create a new accelerated Site-to-Site VPN connection. Connect the new connection to the transit gateway by using a VPN attachment. Update the customer gateway device to use the new Site to Site VPN connection. Delete the existing Site-to-Site VPN connection

Create a new accelerated Site-to-Site VPN connection. Connect the new Site-to-Site VPN connection to the existing virtual private gateway. Update the customer gateway device to use the new Site-to-Site VPN connection. Delete the existing Site-to-Site VPN connection.

Create a new AWS Direct Connect connection with a private VIF between the on-premises data center and the AWS Cloud. Update the customer gateway device to use the new Direct Connect connection. Delete the existing Site-to-Site VPN connection.

Correct Answer: B

To alleviate availability and performance issues caused by internet congestion, the company needs to use an accelerated Site-to-Site VPN connection. Accelerated VPN connections require a transit gateway to function, as virtual private gateways do not support this feature. By configuring a transit gateway in the same AWS Region as the existing virtual private gateway and creating a new accelerated Site-to-Site VPN connection attached to the transit gateway, the company can quickly reduce congestion issues with minimal administrative effort. Therefore, setting up the new accelerated VPN connection and connecting it to a transit gateway is the correct solution.

Discussion

study_aws1

B - correct Acceleration is only supported for Site-to-Site VPN connections that are attached to a transit gateway. Virtual private gateways do not support accelerated VPN connections. https://docs.aws.amazon.com/vpn/latest/s2svpn/accelerated-vpn.html

zaazanuna

B - correct.

ITgeekOption: B

TCW plus VPN accelerated

JoellaLi

You cannot turn on or turn off acceleration for an existing Site-to-Site VPN connection. Instead, you can create a new Site-to-Site VPN connection with acceleration on or off as needed. Then, configure your customer gateway device to use the new Site-to-Site VPN connection and delete the old Site-to-Site VPN connection.

skiingfalconOption: B

Acceleration is only supported for Site-to-Site VPN connections that are attached to a transit gateway. Virtual private gateways do not support accelerated VPN connections. An Accelerated Site-to-Site VPN connection cannot be used with an AWS Direct Connect public virtual interface.

ohcanOption: B

B. Accelerated VPN requires transit GW

helloworldabc

BBBBBBBBBBBB

hedglin

The correct answer is C. Option B is incorrect because it involves unnecessary steps of creating a transit gateway and using a VPN attachment. The question does not mention any requirement for a transit gateway.

RaphaelloOption: B

B is the correct answer. Accelerated site-to-site VPN is the usage of AWS Global Accelerator as an entry point to route traffic from your on-prem to AWS edge location that is closest to customer GW to avoid any congestions on the Internet. It only works with TGW.

marfee

I thin that It's correct answer is B.

qsergiiOption: B

B, others longer or not possible

DeathFrmAbv

Its says congestion, performance issue. So why not D ?

DeathFrmAbv

Sorry my bad, it says minimum administration effort as well