ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS-SysOps All Questions

View all questions & answers for the AWS-SysOps exam
Go to Exam

Exam AWS-SysOps topic 1 question 227 discussion

Exam question from Amazon's AWS-SysOps
Question #: 227
Topic #: 1
[All AWS-SysOps Questions]

A user has setup a VPC with CIDR 20.0.0.0/16. The VPC has a private subnet (20.0.1.0/24. and a public subnet (20.0.0.0/24.. The user's data center has CIDR of
20.0.54.0/24 and 20.1.0.0/24. If the private subnet wants to communicate with the data center, what will happen?

  • A. It will allow traffic communication on both the CIDRs of the data center
  • B. It will not allow traffic with data center on CIDR 20.1.0.0/24 but allows traffic communication on 20.0.54.0/24
  • C. It will not allow traffic communication on any of the data center CIDRs
  • D. It will allow traffic with data center on CIDR 20.1.0.0/24 but does not allow on 20.0.54.0/24
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
VPC allows the user to set up a connection between his VPC and corporate or home network data center. If the user has an IP address prefix in the VPC that overlaps with one of the networks' prefixes, any traffic to the network's prefix is dropped. In this case CIDR 20.0.54.0/24 falls in the VPC's CIDR range of
20.0.0.0/16. Thus, it will not allow traffic on that IP. In the case of 20.1.0.0/24, it does not fall in the VPC's CIDR range. Thus, traffic will be allowed on it.
by awscertified at March 9, 2020, 12:14 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
TroyMcLure
5 months, 3 weeks ago
Correct Answer: D
upvoted 1 times
...
kenkct
6 months ago
answer should be C, since there is no CIDR in same VLAN, unless answer in D is a typo, "20.1.0.0/24" should be "20.0.1.0/24"
upvoted 1 times
...
Thabo_Ramoshai
6 months, 1 week ago
Answer is C - There are no overlaps this these subnets. If the Private Subnet cannot communicate with one DC subnet, then it cannot communicate with the other, simply because none is overlapping with the Private subnet.
upvoted 1 times
...
dennismp
6 months, 2 weeks ago
B is the ans, no overlap on the CICD range between 2 networks!
upvoted 2 times
Golddust
6 months, 2 weeks ago
The VPC is /16. The local route in the routing table contain the entire VPC by default. Now that I type it out I am not sure how AWS handle more specific routes. Going to test this
upvoted 2 times
Golddust
6 months, 1 week ago
From the question they do not say how the customer is connected to AWS. We assume it is via VPN. When you add a route that includes a subnet in the VPC it doesn't allow the target to be a Virtual Private gateway. Only an instance or ENI so without some advanced tweaking I don't see it working.
upvoted 2 times
...
...
...
awscertified
6 months, 3 weeks ago
D. It will allow traffic with data center on CIDR 20.1.0.0/24 but does not allow on 20.0.54.0/24
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago