AWS Certified Solutions Architect – Professional — Question 76

A customer has established an AWS Direct Connect connection to AWS. The link is up and routes are being advertised from the customer's end, however the customer is unable to connect from EC2 instances inside its VPC to servers residing in its datacenter.
Which of the following options provide a viable solution to remedy this situation? (Choose two.)

Answer options

• A. Add a route to the route table with an iPsec VPN connection as the target.
• B. Enable route propagation to the virtual pinnate gateway (VGW).
• C. Enable route propagation to the customer gateway (CGW).
• D. Modify the route table of all Instances using the 'route' command.
• E. Modify the Instances VPC subnet route table by adding a route back to the customer's on-premises environment.

Correct answer: B, E

Explanation

The correct answers, B and E, address the need for proper route propagation and routing configuration to ensure connectivity between the EC2 instances and the on-premises servers. Option A is incorrect because adding a route to an iPsec VPN connection is not applicable if Direct Connect is already in use. Options C and D do not provide a direct solution to the connectivity issue presented.