AWS Certified Solutions Architect – Associate (SAA-C02) — Question 676

A company has on-premises application that generates a large amount of time-sensitive data that is backed up to Amazon S3. The application has grown and there are user complaints about internet bandwidth limitations. A solutions architect needs to design a long-term solution that allows for both timely backups to
Amazon S3 and with minimal impact on internet connectivity for internal users.
Which solution meets these requirements?

Answer options

• A. Establish AWS VPN connections and proxy all traffic through a VPC gateway endpoint.
• B. Establish a new AWS Direct Connect connection and direct backup traffic through this new connection.
• C. Order daily AWS Snowball devices. Load the data onto the Snowball devices and return the devices to AWS each day.
• D. Submit a support ticket through the AWS Management Console. Request the removal of S3 service limits from the account.

Correct answer: B

Explanation

AWS Direct Connect establishes a dedicated, private network connection from the on-premises facility to AWS, bypassing the public internet to ensure consistent backup performance without impacting internal users' bandwidth. An AWS VPN still relies on the public internet, which would not alleviate the bandwidth contention. Using AWS Snowball daily is logistically unfeasible for time-sensitive backups, and S3 service limits are not the cause of local network congestion.