AWS Certified SysOps Administrator – Associate (legacy) — Question 717

A SysOps Administrator has an AWS Direct Connect connection in place in region us-east-1, between an AWS account and a data center. The Administrator is now required to connect the data center to a VPC in another AWS Region, us-west-2, which must have consistent network performance and low-latency.
What is the MOST efficient and quickest way to establish this connectivity?

Answer options

• A. Create an AWS VPN CloudHub architecture, and use software VPN to connect to the VPC in region us-west-2.
• B. Create a new Direct Connect connection between the data center and region us-west-2.
• C. Create a VPC peering connection between the VPC in region us-east-1 and us-west-2, and access the VPC in us-west-2 from the data center.
• D. Use Direct Connect gateway with the existing Direct Connect connection to connect to the Virtual Private Gateway of the VPC in region us-west-2.

Correct answer: D

Explanation

Utilizing an AWS Direct Connect gateway allows an existing Direct Connect connection to link to VPCs in any AWS Region, making it the fastest and most cost-effective solution. Creating a new physical Direct Connect connection is slow and expensive, while a software VPN over the public internet does not guarantee consistent low-latency performance. Furthermore, VPC peering does not support transitive routing from an on-premises Direct Connect interface to a peered VPC.