AWS Certified Advanced Networking – Specialty (ANS-C01) — Question 163

A company has a hybrid IT setup that includes services that run in an on-premises data center and in the AWS Cloud. The company is using AWS Direct Connect to connect its data center to AWS. The company is using one AWS Site-to-Site VPN connection as backup and requires a backup connectivity option to always be present. The company is transitioning to IPv6 by implementing dual-stack architectures.

Which combination of steps will transition the data center's connectivity to AWS in the LEAST amount of time? (Choose two.)

Answer options

• A. Create a new Site-to-Site VPN tunnel for the IPv6 traffic.
• B. Create a new dual-stack Site-to-Site VPN connection between the data center and AWS. Provision routing. Delete the original Site-to-Site VPN connection.
• C. Associate a new dual-stack public VIF with the Direct Connect connection. Migrate the Direct Connect traffic to the new VIF.
• D. Add a new IPv6 peer in the existing VIF. Use the IPv6 address provided by Amazon on the peer router.
• E. Send IPv6 traffic between the data center and AWS in a tunnel inside the existing IPv4 tunnels.

Correct answer: A, D

Explanation

The correct answers are A and D because establishing a new Site-to-Site VPN tunnel for IPv6 traffic and adding a new IPv6 peer in the existing VIF are both efficient steps that can be implemented quickly. The other options either involve more complex setups or entail deleting existing connections, which would take more time and disrupt current operations.