ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 66 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 66
Topic #: 1
[All AWS Certified Security - Specialty Questions]

An organization is moving non-business-critical applications to AWS while maintaining a mission-critical application in an on-premises data center. An on-premises application must share limited confidential information with the applications in AWS. The internet performance is unpredictable.
Which configuration will ensure continued connectivity between sites MOST securely?

  • A. VPN and a cached storage gateway
  • B. AWS Snowball Edge
  • C. VPN Gateway over AWS Direct Connect
  • D. AWS Direct Connect
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by BillyC at Aug. 25, 2019, 5:53 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
armin
Highly Voted 3 years, 10 months ago
C is the answer: https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/aws-direct-connect-plus-vpn-network-to-amazon.html
upvoted 23 times
...
BillyC
Highly Voted 3 years, 11 months ago
Sorry! C
upvoted 13 times
ucsdmiami2020
3 years, 9 months ago
Refer to the following AWS documentation... https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/aws-direct-connect-vpn.html
upvoted 5 times
...
...
a1234321606
Most Recent 9 months, 3 weeks ago
Selected Answer: D
Ans is D. VPN isn't necessary because DX already is a private connection between on-premises and AWS.
upvoted 1 times
...
Raphaello
1 year, 6 months ago
Selected Answer: D
There's nothing called "VPN Gateway". It's Virtual Private Gateway (VGW) to be used, if you want to deploy site-to-site VPN over Direct Connect. That's using AWS terms. Poor worded answers trying to be tricky but caused confusion instead.
upvoted 2 times
...
matrpro
2 years, 3 months ago
Selected Answer: C
C and D could.be correct. I choose C because they want the most Secure
upvoted 1 times
...
Bosch123
2 years, 11 months ago
D is my answer. C - Definitely a secure and consistent way of communicating But, as the on-prem applications send the limited confidential data which is ensured by the application itself, do we really need to further encrypt it via VPN Tunnel, knowing the fact that AWS direct connect is a private line to customer?
upvoted 2 times
...
dcasabona
3 years ago
Selected Answer: C
I agree with option C.
upvoted 1 times
...
TigerInTheCloud
3 years, 4 months ago
Selected Answer: C
A - VPN is good, but what the storage gateway is for? B - Snowball edge is for data aggregating and process, not for communication between on-remises and AWS. C - VPN for security and DX for addressing "internet performance' concern D - Seucrity is not addressed
upvoted 3 times
...
Radhaghosh
3 years, 6 months ago
Ans - C (VPN + Direct Connect)
upvoted 1 times
...
FonKeel
3 years, 9 months ago
Ans - C https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/aws-direct-connect-vpn.html
upvoted 2 times
...
hk436
3 years, 9 months ago
D is my answer.
upvoted 1 times
...
nparimi
3 years, 9 months ago
C Internet performance addressed by Dx, Security addressed by VPN. Ans VPN on DX
upvoted 2 times
...
DerekKey
3 years, 9 months ago
C -> MOST securely - from AWS materials -> This solution combines the benefits of the end-to-end secure IPSec connection with low latency and increased bandwidth of the AWS Direct Connect to provide a more consistent network experience than internet-based VPN connections.
upvoted 2 times
...
sanjaym
3 years, 9 months ago
Ans: C 100%
upvoted 1 times
...
NANDY666
3 years, 9 months ago
C is Correct
upvoted 1 times
...
shooricg
3 years, 9 months ago
I thought it was D at first, but when rereading the question, it asks for connectivity and security. so VPN is a must. so answer is C
upvoted 2 times
...
devjava
3 years, 9 months ago
Ans > C https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/aws-direct-connect-plus-vpn-network-to-amazon.html
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel