AWS Certified Solutions Architect – Associate (SAA-C02) — Question 497

A company is using a VPC that is provisioned with a 10.10.1.0/24 CIDR block. Because of continued growth, IP address space in this block might be depleted soon. A solutions architect must add more IP address capacity to the VPC.
Which solution will meet these requirements with the LEAST operational overhead?

Answer options

• A. Create a new VPC. Associate a larger CIDR block.
• B. Add a secondary CIDR block of 10.10.2.0/24 to the VPC.
• C. Resize the existing VPC CIDR block from 10.10.1.0/24 to 10.10.1.0/16.
• D. Establish VPC peering with a new VPC that has a CIDR block of 10.10.1.0/16.

Correct answer: B

Explanation

Adding a secondary CIDR block to an existing VPC is the most efficient solution because AWS allows associating additional IPv4 CIDR blocks directly to a VPC without service interruption. Resizing an existing primary CIDR block is not supported, and creating a new VPC or setting up peering introduces significant operational overhead due to the need for resource migration and route table reconfigurations.