Implementing Cisco Catalyst Center and SD-WAN Essentials (ENTNSS) — Question 25

Which architecture model establishes internet-based connectivity between on-premises networks and AWS cloud resources?

Answer options

• A. That establishes an IPsec VPN tunnel with Internet Key Exchange (IKE) for secure key negotiation and encrypted data transmission.
• B. That relies on AWS Elastic Load Balancing (ELB) for traffic distribution and uses SSL/TLS encryption for secure data transmission.
• C. That employs AWS Direct Connect for a dedicated network connection and uses private IP addresses for secure communication.
• D. That uses Amazon CloudFront for caching and distributing content globally and uses HTTPS for secure data transfer.

Correct answer: A

Explanation

The correct answer, A, describes the use of an IPsec VPN tunnel, which is specifically designed for secure internet-based connectivity between on-premises and AWS resources. Option B focuses on load balancing and encryption but does not address direct connectivity. Option C discusses AWS Direct Connect, which is a dedicated connection rather than internet-based connectivity. Option D is about content distribution and caching, which is not the primary function for connecting on-premises networks to AWS.