AWS Certified SysOps Administrator – Associate (legacy) — Question 337

A user has setup a VPC with CIDR 20.0.0.0/16. The VPC has a private subnet (20.0.1.0/24. and a public subnet (20.0.0.0/24.. The user's data center has CIDR of
20.0.54.0/24 and 20.1.0.0/24. If the private subnet wants to communicate with the data center, what will happen?

Answer options

• A. It will allow traffic communication on both the CIDRs of the data center
• B. It will not allow traffic with data center on CIDR 20.1.0.0/24 but allows traffic communication on 20.0.54.0/24
• C. It will not allow traffic communication on any of the data center CIDRs
• D. It will allow traffic with data center on CIDR 20.1.0.0/24 but does not allow on 20.0.54.0/24

Correct answer: D

Explanation

Because the data center CIDR block 20.0.54.0/24 overlaps with the VPC's primary CIDR block of 20.0.0.0/16, AWS will route this traffic locally within the VPC rather than forwarding it to the data center. Conversely, the CIDR block 20.1.0.0/24 lies outside the VPC's range, allowing traffic to be successfully routed to the data center via the virtual private gateway.