ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 164 discussion

Exam question from Amazon's ANS-C00
Question #: 164
Topic #: 1
[All ANS-C00 Questions]

You have two Direct Connect connections and two VPN connections to your network. Site A is VPN 10.1.0.0/24 AS 65000 65000, Site B is VPN 10.1.0.252/30 AS
65000, Site C is DX 10.0.0.0/8 AS 65000 and Site D is DX 10.0.0.0/16 AS 65000 65000 65000. Which site will AWS choose to reach your network?

  • A. Site A: VPN 10.0.1.0/24 AS 65000 65000
  • B. Site B: VPN 10.0.1.252/30 AS 65000 65000 65000
  • C. Site C: DX 10.0.0.0/8 AS 65000
  • D. Site D: DX 10.0.0.0/16
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
Site B, the most specific prefix always wins.
by Huntkey at Feb. 18, 2021, 9:26 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
JamesTR
Highly Voted 3 years, 9 months ago
Impossible to answer without knowing destination IP
upvoted 8 times
...
Huntkey
Highly Voted 3 years, 9 months ago
Seriously, I think the people who come up this question don't know about networking. This question depends on what IP AWS uses to reach your site... Also, who has site with just a /30 prefix?
upvoted 8 times
...
slackbot
Most Recent 2 years, 3 months ago
:D no destination IP, how should we know :D also, answer B contains 3 ASN, while in the question there is 1 ASN
upvoted 1 times
...
ongre_
2 years, 11 months ago
Selected Answer: B
Longest prefix always wins
upvoted 2 times
...
haint
3 years ago
DX will be preferred over VPN connection. 10.0.0.0/16 route is more specific than 10.0.0.0/8, thus D should be a right answer.
upvoted 1 times
...
sayed_2908
3 years, 7 months ago
Agree that DX have priority over VPN but keep in mind that more specific prefix always win.
upvoted 3 times
...
JoMainAWS
3 years, 8 months ago
what???? hahaha
upvoted 2 times
...
walkwolf3
3 years, 8 months ago
B ===Route selection Longest prefix match applies. If the prefixes are the same, then the virtual private gateway prioritizes routes as follows, from most preferred to least preferred: BGP propagated routes from an AWS Direct Connect connection Manually added static routes for a Site-to-Site VPN connection BGP propagated routes from a Site-to-Site VPN connection For matching prefixes where each Site-to-Site VPN connection uses BGP, the AS PATH is compared and the prefix with the shortest AS PATH is preferred. https://docs.aws.amazon.com/vpn/latest/s2svpn/VPNRoutingTypes.html#vpn-route-priority
upvoted 3 times
...
zenfox
3 years, 8 months ago
question is bad and answer are different lol I will go with D DX is better than VPN. Also C has one as-path vs D that has none in the answer but 3 in the question
upvoted 2 times
zenfox
3 years, 8 months ago
plus D has more specific route as well. /16 is better than /8
upvoted 1 times
...
...
ChauPhan
3 years, 9 months ago
https://docs.aws.amazon.com/vpn/latest/s2svpn/VPNRoutingTypes.html#vpn-route-priority When a virtual private gateway receives routing information, it uses path selection to determine how to route traffic. Longest prefix match applies. If the prefixes are the same, then the virtual private gateway prioritizes routes as follows, from most preferred to least preferred: BGP propagated routes from an AWS Direct Connect connection Manually added static routes for a Site-to-Site VPN connection BGP propagated routes from a Site-to-Site VPN connection For matching prefixes where each Site-to-Site VPN connection uses BGP, the AS PATH is compared and the prefix with the shortest AS PATH is preferred.
upvoted 2 times
ChauPhan
3 years, 9 months ago
It will choose B because it is most specific route B. Site B: VPN 10.0.1.252/30 AS 65000 65000 65000
upvoted 2 times
ChauPhan
3 years, 9 months ago
If 02 routes with same length, then AWS will choose DX instead of VPN
upvoted 1 times
abc321
3 years, 9 months ago
DX routes will be preferred over VPN routes. Even though B has specific route it wont be used as DX routes C and D will be preferred. Ans would be D as its more specific than C.
upvoted 1 times
ptpho
3 years, 8 months ago
Agreed with D. DCX > VPN and more specific > ASP
upvoted 1 times
ptpho
3 years, 8 months ago
changed my opinion. most specific route always selected. This is logical and we dont care about /30 because this is a site, not AWS VPC CIDR. So ans is B
upvoted 1 times
...
...
...
...
...
ChauPhan
3 years, 9 months ago
If DX routes are same length, then it will use local preference communities, AS_PATH to for route priority.
upvoted 1 times
...
...
dev62
3 years, 9 months ago
ANS should be D. As both A & B are not the same CIDR as in the question. C -is larger one. So, D more specific Route is /16.
upvoted 1 times
...
eeghai7thioyaiR4
3 years, 9 months ago
That question is aweful However, let's gamble B: no. "Your network" is probably something more than a /30 A: no. VPN A has 10.1.0.0/24, while the answer states "10.0.1.0/24" This leaves C and D .. Take a random pick ?
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel