AWS Certified Cloud Practitioner (CLF-C02) — Question 69

A network engineer needs to build a hybrid cloud architecture connecting on-premises networks to the AWS Cloud using AWS Direct Connect. The company has a few VPCs in a single AWS Region and expects to increase the number of VPCs to hundreds over time.
Which AWS service or feature should the engineer use to simplify and scale this connectivity as the VPCs increase in number?

Answer options

• A. VPC endpoints
• B. AWS Transit Gateway
• C. Amazon Route 53
• D. AWS Secrets Manager

Correct answer: B

Explanation

The correct answer is AWS Transit Gateway because it allows for simplified and scalable connectivity between multiple VPCs and on-premises networks, making it ideal for the engineer's future growth plans. VPC endpoints are not designed for this level of connectivity, Amazon Route 53 is primarily for DNS management, and AWS Secrets Manager is used for managing sensitive information, none of which address the networking requirements.