Your company previously configured a heavily used, dynamically routed VPN connection between your on-premises data center and AWS. You recently provisioned a DirectConnect connection and would like to start
using the new connection. After configuring DirectConnect settings in the AWS Console, which of the following
options win provide the most seamless transition for your users?
A.
Delete your existing VPN connection to avoid routing loops configure your DirectConnect router with the
appropriate settings and verity network traffic is leveraging DirectConnect.
B.
Configure your DirectConnect router with a higher BGP priority man your VPN router, verify network traffic is
leveraging Directconnect and then delete your existing VPN connection.
C.
Update your VPC route tables to point to the DirectConnect connection configure your DirectConnect router
with the appropriate settings verify network traffic is leveraging DirectConnect and then delete the VPN
connection.
D.
Configure your DirectConnect router, update your VPC route tables to point to the DirectConnect
connection, configure your VPN connection with a higher BGP priority. And verify network traffic is
leveraging the DirectConnect connection.
Answer: C
The correct answer is C, as from https://aws.amazon.com/directconnect/faqs/:
Q. Can I use AWS Direct Connect and a VPN Connection to the same VPC simultaneously?
Yes. However, only in fail-over scenarios. The Direct Connect path will always be preferred, when established, regardless of AS path prepending.
C
C
B
D
B.
d