ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 331 discussion

Exam question from Amazon's ANS-C00
Question #: 331
Topic #: 1
[All ANS-C00 Questions]

Your Amazon Kinesis application receives data streams from thousands of devices. The data is then stored in an on-premises Hadoop cluster. You are concerned about historical data that shows periods of sustained traffic between 1 Gbps and 2 Gbps during peaks. You must ensure that you have secure, fault- tolerant connectivity between Amazon Kinesis and your data center.
What should you implement to address these needs?

  • A. Deploy a single 1-Gbps Direct Connect connection with a VPN backup.
  • B. Deploy three 1-Gbps Direct Connect connections.
  • C. Deploy two 1-Gbps Direct Connect connections.
  • D. Set up an IPsec VPN connection over Direct Connect with two tunnels.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by eeghai7thioyaiR4 at March 17, 2021, 3:12 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
eeghai7thioyaiR4
Highly Voted 3 years, 8 months ago
Ans: B With three 1Gbps direct connection, you can loose one and still get your required bandwith (1-2Gbps)
upvoted 13 times
StelSen
3 years, 7 months ago
This explanation is great.
upvoted 2 times
...
...
ErnstVonPappen
Most Recent 2 years, 6 months ago
kpr2022 mentions the need for security so he must select D. But isn't Direct Connect secure just because it is a direct point-to-point? That's why AWS doesn't feel the need to encrypt it. However, if you really want to you can encrypt traffic over Direct Connect anyway. I am thinking B is the correct answer.
upvoted 1 times
...
Ramyras
2 years, 7 months ago
Selected Answer: B
My vote is B as VPN can hadle 1.25 Gbps and it is less than peak 2 Gbps
upvoted 1 times
...
JoshuaAlkar
2 years, 9 months ago
B. Three connections are required to provide fault tolerance. All of the other options would be unable to handle the peak loads over 1 Gbps without exceeding the available bandwidth.
upvoted 1 times
...
[Removed]
2 years, 9 months ago
Selected Answer: D
D. Secure connection = VPN. "If your VPN connection is to a Virtual Private Gateway, aggregated throughput limits would apply." : https://aws.amazon.com/vpn/faqs/#:~:text=A%3A%20Each%20AWS%20Site-to,of%20up%20to%201.25%20Gbps
upvoted 1 times
...
JoshuaAlkar
2 years, 9 months ago
B from AWS dumps here https://d1.awsstatic.com/training-and-certification/docs-advnetworking-spec/AWS_Certified_Advanced_Networking_Specialty_SampleExam.pdf
upvoted 1 times
...
titi_r
2 years, 10 months ago
Selected Answer: D
"D" is the right answer. AWS Direct Connect does not encrypt your traffic that is in transit by default. With AWS Direct Connect and AWS Site-to-Site VPN, you can combine one or more AWS Direct Connect dedicated network connections with the Amazon VPC VPN. This combination provides an IPsec-encrypted private connection that also reduces network costs, increases bandwidth throughput, and provides a more consistent network experience than internet-based VPN connections. https://docs.aws.amazon.com/directconnect/latest/UserGuide/encryption-in-transit.html Q: What is the approximate maximum throughput of a Site-to-Site VPN connection? A: Each AWS Site-to-Site VPN connection has two tunnels and each tunnel supports a maximum throughput of up to 1.25 Gbps. If your VPN connection is to a Virtual Private Gateway, aggregated throughput limits would apply. https://aws.amazon.com/vpn/faqs/#:~:text=A%3A%20Each%20AWS%20Site-to,of%20up%20to%201.25%20Gbps
upvoted 1 times
...
FireTv
2 years, 10 months ago
Selected Answer: B
I will go for B (three 1 Gbps Connection), considering fault tolerance will be achieved in case one connection is down (peak is 2 Gbps)
upvoted 1 times
...
kpr2022
3 years, 2 months ago
Selected Answer: D
Question asks for secure and fault-tolerant. Direct connect doesn't encrypt the data and hence requires a VPN on top of it for secure data transmission. With two tunnels and assuming ECMP enabled, will provide 2.5Gbps over DC. Hence D. I
upvoted 4 times
...
Royce341
3 years, 2 months ago
Selected Answer: B
B is the answer
upvoted 1 times
...
sunilrch
3 years, 7 months ago
B. Deploy three 1-Gbps Direct Connect connections
upvoted 1 times
...
ChauPhan
3 years, 7 months ago
B. Deploy three 1-Gbps Direct Connect connections. D. Set up an IPsec VPN connection over Direct Connect with two tunnels. Secure = VPN, LAGs = 3 DX connections
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel