AWS Certified Solutions Architect – Professional — Question 341

An organization is having a VPC for the HR department, and another VPC for the Admin department. The HR department requires access to all the instances running in the Admin VPC while the Admin department requires access to all the resources in the HR department.
How can the organization setup this scenario?

Answer options

• A. Setup VPC peering between the VPCs of Admin and HR.
• B. Setup ACL with both VPCs which will allow traffic from the CIDR of the other VPC.
• C. Setup the security group with each VPC which allows traffic from the CIDR of another VPC.
• D. It is not possible to connect resources of one VPC from another VPC.

Correct answer: A

Explanation

VPC peering is the primary mechanism in AWS to enable private network routing between two distinct VPCs. While security groups and Network ACLs are used to control and filter traffic, they cannot establish connectivity between VPCs without an underlying peering connection or transit gateway. Thus, establishing a VPC peering connection is the correct way to allow the HR and Admin VPCs to communicate.