AWS Certified Solutions Architect – Associate (SAA-C02) — Question 69

An application running on an Amazon EC2 instance in VPC-A needs to access files in another EC2 instance in VPC-B. Both are in separate AWS accounts. The network administrator needs to design a solution to configure secure access to EC2 instance in VPC-B from VPC-A. The connectivity should not have a single point of failure or bandwidth concerns.
Which solution will meet these requirements?

Answer options

• A. Set up a VPC peering connection between VPC-A and VPC-B.
• B. Set up VPC gateway endpoints for the EC2 instance running in VPC-B.
• C. Attach a virtual private gateway to VPC-B and set up routing from VPC-A.
• D. Create a private virtual interface (VIF) for the EC2 instance running in VPC-B and add appropriate routes from VPC-A.

Correct answer: A

Explanation

The correct option, A, involves creating a VPC peering connection, which allows direct communication between the two VPCs while ensuring that there is no single point of failure. Options B and C do not provide the necessary cross-account access, and option D introduces complexity without addressing the fundamental requirement for secure and reliable connectivity between VPCs in different accounts.