SAP-C02 · Question #253
SAP-C02 Question #253: Real Exam Question with Answer & Explanation
The correct answer is C: Create a VPC peering connection between the two VPCs and add a route to the routing table of. A: It does not goes through NAT so this is not the solution. B: It does not need to go through internet. This is not secured. D: This is VPN which is not suitable. Peering should be used.
Question
A company has developed a new billing application that will be released in two weeks. Developers are testing the application running on 10 EC2 instances managed by an Auto Scaling group in subnet 172.31.0.0/24 within VPC A with CIDR block 172.31.0.0/16. The Developers noticed connection timeout errors in the application logs while connecting to an Oracle database running on an Amazon EC2 instance in the same region within VPC B with CIDR block 172.50.0.0/16. The IP of the database instance is hard- coded in the application instances. Which recommendations should a Solutions Architect present to the Developers to solve the problem in a secure way with minimal maintenance and overhead?
Options
- ADisable the SrcDestCheck attribute for all instances running the application and Oracle Database.
- BCreate and attach internet gateways for both VPCs. Configure default routes to the Internet
- CCreate a VPC peering connection between the two VPCs and add a route to the routing table of
- DCreate an additional Amazon EC2 instance for each VPC as a customer gateway; create one
Explanation
A: It does not goes through NAT so this is not the solution. B: It does not need to go through internet. This is not secured. D: This is VPN which is not suitable. Peering should be used.
Community Discussion
No community discussion yet for this question.