AWS Certified SysOps Administrator – Associate — Question 337

A company stores data in Amazon S3 buckets that are provisioned in three separate AWS Regions. The data is copied from the S3 buckets to the data center over the public internet using a VPN. The SysOps administrator notices that, occasionally, the transfers take longer than usual, and determines the issue is congestion within the company's ISP network.

What is the MOST cost-effective approach the administrator can take to ensure consistent transfer times from S3 to the data center?

Answer options

• A. Establish an AWS Direct Connect link to each Region. Create a private virtual interface over each link.
• B. Establish an AWS Direct Connect link to each Region. Create a public virtual interface over each link.
• C. Establish an AWS Direct Connect link to one of the Regions. Create a private virtual interface over that link.
• D. Establish an AWS Direct Connect link to one of the Regions. Create a public virtual interface over that link.

Correct answer: D

Explanation

Amazon S3 is a public service, which means a public virtual interface (VIF) is required to access it over AWS Direct Connect. Because a single AWS Direct Connect connection with a public VIF allows access to public AWS services in any AWS Region over the AWS global network, setting up a link to only one Region is the most cost-effective approach. Setting up links in all three Regions or using private VIFs (which are for VPC resources) would be either unnecessarily expensive or technically incorrect.