SAP-C02 Question #76: Real Exam Question with Answer & Explanation

Question

A company is running a line-of-business (LOB) application on AWS to support its users. The application runs in one VPC, with a backup copy in a second VPC in a different AWS Region for disaster recovery. The company has a single AWS Direct Connect connection between its on- premises network and AWS. The connection terminates at a Direct Connect gateway. All access to the application must originate from the company's on-premises network and traffic must be encrypted in transit through the use of IPsec. The company is routing traffic through a VPN tunnel over the Direct Connect connection to provide the required encryption. A business continuity audit determines that the Direct Connect connection represents a potential single point of failure for access to the application. The company needs to remediate this issue as quickly as possible. Which approach will meet these requirements?

Options

• AOrder a second Direct Connect connection to a different Direct Connect location. Terminate the
• BConfigure an AWS Site-to-Site VPN connection over the internet. Terminate the VPN connection
• CCreate a transit gateway Attach the VPCs to the transit gateway, and connect the transit gateway
• DCreate a transit gateway. Attach the VPCs to the transit gateway, and connect the transit gateway

Explanation

Create a transit gateway. Attach the VPCs to the transit gateway, and connect the transit gateway to the Direct Connect gateway. Configure an AWS Site-to-Site VPN connection, and terminate it at the transit gateway https://aws.amazon.com/premiumsupport/knowledge-center/dx-configure-dx-and-vpn-failover- All access to the application must originate from the company's on-premises network and traffic must be encrypted in transit through the use of IPsec. = need to use VPN.

No community discussion yet for this question.