A finance institute has deployed its application servers in multiple VPCs created in us-east-1 & us-west-1 regions.
Developer Team based at head office are accessing these servers over 10 Gig AWS Direct Connect connections in the us-east-1 region which is attached to the Direct Connect gateway associated with VGW in each VPC.
They are planning to launch a new banking application for which they have deployed new servers in additional VPC's created in us-east-1 & us-west-1 regions.
The developer team requires high performance connectivity with new servers from the on-premises location in addition to connectivity to existing servers.
Also, servers in all VPC need to have connectivity with each other for data synchronization. Which of the following designs needs to be implemented to meet this requirement?
Click on the arrows to vote for the correct answer
A. B. C. D.Correct Answer - D.
AWS Direct Connect Gateway cannot be associated with Transit Gateway when it's associated with VGW.
In the above requirements, servers in all VPC need to have connectivity with each other.
This can be established by connecting all VPC to Transit Gateway.
To enable connectivity from head office to servers in all VPC, a transit virtual interface needs to be created to connect AWS Direct Connect gateway with Transit gateway.
Options A & B are incorrect as AWS Direct Connect Gateway needs to connect to Transit gateway over transit virtual interface & not private virtual interface.
Option C is incorrect as AWS Direct Connect gateway cannot be associated with Transit Gateway while it's already connected to VGW.
For more information on the Direct Connect gateway, refer to the following URL.
https://docs.aws.amazon.com/directconnect/latest/UserGuide/direct-connect-transit-gateways.htmlThe requirement is to provide high-performance connectivity for the developer team to access new servers in addition to the existing servers located in multiple VPCs, created in us-east-1 and us-west-1 regions. Furthermore, servers in all VPCs need to communicate with each other for data synchronization.
Option A: Remove the existing association between AWS Direct Connect Gateway and VGW. Connect all VPCs to the Transit Gateway. Create a new association between Transit Gateway and Direct Connect gateway over the private virtual interface.
This design suggests removing the existing association between the AWS Direct Connect Gateway and the Virtual Private Gateway (VGW) and connecting all VPCs to the Transit Gateway. Furthermore, a new association between the Transit Gateway and the Direct Connect Gateway needs to be created over the private virtual interface.
Explanation:
Transit Gateway is a highly scalable service that simplifies network architecture by enabling customers to connect their Amazon Virtual Private Clouds (VPCs) and on-premises networks to a single gateway. It acts as a hub and allows inter-VPC traffic without the need for VPC peering. Direct Connect Gateway is a service that allows customers to connect their on-premises networks to their Amazon VPCs over a dedicated private connection.
Option B: Retain the existing association between AWS Direct Connect Gateway and VGW. Connect new VPCs to Transit Gateway. Create a new association between Transit Gateway and Direct Connect gateway over the private virtual interface.
This design suggests retaining the existing association between AWS Direct Connect Gateway and VGW and connecting new VPCs to Transit Gateway. Furthermore, a new association between the Transit Gateway and the Direct Connect Gateway needs to be created over the private virtual interface.
Option C: Retain the existing association between AWS Direct Connect Gateway and VGW. Connect all VPCs to the Transit Gateway. Create a new association between Transit Gateway and Direct Connect gateway over transit virtual interface.
This design suggests retaining the existing association between AWS Direct Connect Gateway and VGW and connecting all VPCs to the Transit Gateway. Furthermore, a new association between the Transit Gateway and the Direct Connect Gateway needs to be created over the transit virtual interface.
Option D: Remove the existing association between AWS Direct Connect Gateway and VGW. Connect all VPCs to the Transit Gateway. Create a new association between Transit Gateway and Direct Connect gateway over transit virtual interface.
This design suggests removing the existing association between AWS Direct Connect Gateway and VGW and connecting all VPCs to the Transit Gateway. Furthermore, a new association between the Transit Gateway and the Direct Connect Gateway needs to be created over the transit virtual interface.
In summary, the best design that meets the requirement is Option A, where all VPCs are connected to the Transit Gateway, and a new association between the Transit Gateway and the Direct Connect Gateway is created over the private virtual interface. This design enables the developer team to have high-performance connectivity to both the existing and new servers, and it also allows communication between all servers in all VPCs for data synchronization.