ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 15 discussion

Exam question from Amazon's ANS-C00
Question #: 15
Topic #: 1
[All ANS-C00 Questions]

You run a well-architected, multi-AZ application in the eu-central-1 (Frankfurt) AWS region. The application is hosted in a VPC and is only accessed from the corporate network. To support large volumes of data transfer and administration of the application, you use a single 10-Gbps AWS Direct Connect connection with multiple private virtual interfaces. As part of a review, you decide to improve the resilience of your connection to AWS and make sure that any additional connectivity does not share the same Direct Connect routers at AWS. You need to provide the best levels of resilience to meet the application's needs.
Which two options should you consider? (Choose two.)

  • A. Install a second 10-Gbps Direct Connect connection to the same Direct Connection location.
  • B. Deploy an IPsec VPN over a public virtual interface on a new 10-Gbps Direct Connect connection.
  • C. Install a second 10-Gbps Direct Connect connection to a Direct Connect location in eu-west-1.
  • D. Deploy an IPsec VPN over the Internet to the eu-west-1 region for diversity.
  • E. Install a second 10-Gbps Direct Connect connection to a second Direct Connect location for eu-central-1.
Show Suggested Answer Hide Answer
Suggested Answer: CE 🗳️
by ohcan at July 5, 2019, 9:11 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ryanle
Highly Voted 3 years, 8 months ago
I think A and E are correct options, because with A: aws will provide 2 different aws router --> redundant/resilience with E: we will have multiple location in the same region with application resides on With B: is incorrect because it not mention about how many connection of location need to be installed with C: is incoorect because DX is not in the same region with application, hence without direct connect gateway, it will de complicated installation (need provision Public VIF, then setup vpn over public VIF with D: is obvious incorrect due to small bandwidth.
upvoted 26 times
Globetrotter
3 years, 7 months ago
@RYNLE ; I am thinking about the option C , let say if we need redundancy in region perspective, we should have another connection from another region. In that case option C can be considered and option E for single region high availability . But as you mentioned Option A will provide redudancy but for the maximum redudancy option C should be considered.
upvoted 2 times
...
...
aviz
Highly Voted 3 years, 8 months ago
This is a tricky question and we are falling for it.Answer is A and E.B does not qualify to be the answer because the application is in VPC and option B talks about setting up the public VIF using Ipsec VPN."A" is more appropriate here because by default when you provision the 2nd connection in the same direct connect location aws by default places that connection on different aws device.
upvoted 17 times
...
PavanKushwah123
Most Recent 2 years, 4 months ago
Correct Answer BC
upvoted 1 times
...
dxloader
2 years, 11 months ago
You must supply the highest levels --- C and E
upvoted 1 times
...
hecong
2 years, 11 months ago
Selected Answer: CE
For critical production workloads that require high resiliency, it is recommended to have one connection at multiple locations. As shown in the figure above, such a topology ensures resilience to connectivity failure due to a fiber cut or a device failure as well as a complete location failure. You can use AWS Direct Connect gateway to access any AWS Region (except AWS Regions in China) from any AWS Direct Connect location. [High Resiliency for Critical Workloads]↓ https://aws.amazon.com/directconnect/resiliency-recommendation/
upvoted 4 times
...
guchao2000
3 years ago
After checking the others' replies, I still think B & C are better options: B - Additional DX with VPN C - Provide highest resilience, compared A and E, by providing DX at different region A is incorrect, as the same Direct Connection Location can be single point of failure E is incorrect, less resilience compared to C
upvoted 1 times
...
clooudy
3 years ago
Selected Answer: AE
large volumes of data and High resiliency - VPN is out so no B and D C can be done with DX gateway but A and E are better options and provide low latency
upvoted 1 times
...
AzureDP900
3 years, 4 months ago
I will go with A, E
upvoted 1 times
...
hugo1111
3 years, 4 months ago
C & D are incorrect. Your application is in eu-central-1. Creating a DX/VPN on other region for resiliency is completely pointless. A is useless. If the DX location get a problem. DX on other location can provide the resiliency on the router (E) VPN connection is the backup for DX (B) My answer is B & E.
upvoted 1 times
hugo1111
3 years, 4 months ago
High Resiliency for Critical Workloads (E) https://aws.amazon.com/directconnect/resiliency-recommendation/ VPN Backup DX (B) https://aws.amazon.com/premiumsupport/knowledge-center/configure-vpn-backup-dx/
upvoted 1 times
hugo1111
3 years, 4 months ago
VPN Backup DX may not a good solution as the DX has 10Gbps...but VPN on vgw only can provide 1.25Gbps bandwidth...
upvoted 1 times
hugo1111
3 years, 4 months ago
So It should be A & E
upvoted 1 times
...
...
...
...
StelSen
3 years, 6 months ago
After seeing this, I felt C&E should be correct answer. https://aws.amazon.com/directconnect/resiliency-recommendation/
upvoted 1 times
StelSen
3 years, 6 months ago
I changed my mind to A & E. Because of two reasons: 1) Any additional connectivity does not share the same Direct Connect routers at AWS - This can be achieved when you placed second DX. So fine 2) "Multiple private virtual interfaces" - If I use other region, then latency will become an issue even if I use DXGW. However Option-C is really good your company mandates Regional level resiliency which is not the scenario in this question.
upvoted 1 times
...
...
AshishBravo
3 years, 6 months ago
AE As when we provision the 2nd connection in the same direct connect location aws by default places that connection on different aws device. and Yes we need a Second Location in the same region to make connectivity redundant (in case of Data Center Failure)
upvoted 1 times
...
pcpcpc888
3 years, 6 months ago
How can A be an option considering "best resiliency" against DX location failure, not to mention it did not talk about whether the connection was installed on different DX router.
upvoted 1 times
JamesTR
3 years, 6 months ago
I guess because all other answers except E make even less sense.
upvoted 1 times
...
mazayi
3 years, 6 months ago
A is valid because "When you request multiple ports at the same AWS Direct Connect location, they will be provisioned on redundant Amazon routers." https://aws.amazon.com/directconnect/faqs/
upvoted 1 times
...
...
MaikM
3 years, 6 months ago
Why C is not considered ?
upvoted 1 times
Paagee
3 years, 6 months ago
If Direct Connect is in different region, then a direct connect gateway is needed in order connect back to the central region. It is doable but not ideal due to the latency/performance. If this is active/backup, then be my guest, but if this will be active/active, then it is not preferable. All answers with VPN are out due to the bandwidth provide by VPN is only 1.25Gbps if I remember correctly?
upvoted 2 times
...
...
ChauPhan
3 years, 6 months ago
Agree with A,E
upvoted 1 times
...
asdf99
3 years, 6 months ago
A and E seem correct The reasoning: DUAL CONNECTION: SINGLE LOCATION: Dual connections at a single location can be configured in two different ways: as a LAG or as independent connections... When used as independent connections located on different AWS Direct Connect devices, dual connections increase the level of resilience to failure. ANSWER for A SINGLE CONNECTIONS: DUAL LOCATIONS: When a connection is created at multiple AWS Direct Connect locations, you benefit from location diversity and resilience from local hardware failures. ANSWER for E
upvoted 2 times
...
PeppaPig
3 years, 7 months ago
E is correct by all means. Between A and C, I think C is better as it provides "best resilience", and with Direct Connect Gateway you can access any AWS regions from any AWS Direct Connection locations
upvoted 1 times
PeppaPig
3 years, 6 months ago
I go with C&E, "best level of resilience" is the key factor
upvoted 1 times
...
...
Bijukurup
3 years, 7 months ago
my answer A & E
upvoted 3 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel