AWS Certified Solutions Architect – Associate (SAA-C03) — Question 494

A company has multiple VPCs across AWS Regions to support and run workloads that are isolated from workloads in other Regions. Because of a recent application launch requirement, the company’s VPCs must communicate with all other VPCs across all Regions.

Which solution will meet these requirements with the LEAST amount of administrative effort?

Answer options

• A. Use VPC peering to manage VPC communication in a single Region. Use VPC peering across Regions to manage VPC communications.
• B. Use AWS Direct Connect gateways across all Regions to connect VPCs across regions and manage VPC communications.
• C. Use AWS Transit Gateway to manage VPC communication in a single Region and Transit Gateway peering across Regions to manage VPC communications.
• D. Use AWS PrivateLink across all Regions to connect VPCs across Regions and manage VPC communications

Correct answer: C

Explanation

AWS Transit Gateway acts as a cloud router, significantly reducing the complexity of managing a full mesh of VPC connections. By using Transit Gateway within each Region and peering the transit gateways across Regions, the company can establish full VPC-to-VPC communication with minimal routing configuration and administrative overhead. Solutions like VPC peering require a complex web of individual connections, while PrivateLink and Direct Connect are not designed for simple, scalable all-to-all VPC routing.