AWS Certified Advanced Networking – Specialty (ANS-C00) — Question 21

A customer is using ABC Telecom as a network provider. The customer has 10 different offices connected to ABC Telecom's MPLS backbone. The customer is setting up an AWS Direct Connect connection to AWS and has provided the LOA-CFA to ABC Telecom. ABC Telecom has terminated the Direct Connect circuit into their MPLS backbone. To uniquely identify the customer's traffic over the MPLS backbone, the customer must encapsulate all traffic with VLAN tag 100. The customer wants to send traffic to multiple VPCs.
Which two steps should be taken to meet the customer's requirement? (Choose two.)

Answer options

• A. The customer performs Q-in-Q tunneling, with the AWS-required VLAN tag in the inside and VLAN 100 as the outside tag.
• B. Create a support ticket with AWS to request the removal of the outer VLAN tag 100 as the traffic reaches AWS routers.
• C. Send the traffic for all VPCs with the same VLAN tag 100 and use BGP to ensure that proper routing takes place to the appropriate VPC.
• D. ABC Telecom removes the outer tag before sending the packet to AWS.
• E. ABC Telecom creates a support ticket with AWS to exchange MPLS labels and include the AWS port as part of their MPLS network.

Correct answer: A, D

Explanation

Option A is correct because Q-in-Q tunneling allows the customer to encapsulate their traffic with an inner VLAN tag for AWS while retaining the outer VLAN tag for ABC Telecom's MPLS network. Option D is also correct as removing the outer tag ensures the traffic is correctly routed to AWS. Options B and E are incorrect as they do not address the encapsulation requirements, while option C would not work since all VPC traffic must be differentiated by unique VLAN tags.