What is the correct way to configure AWS Direct connect for access to services such as Amazon S3?

You are implementing AWS Direct Connect. You intend to use AWS public service end points such as Amazon
S3, across the AWS Direct Connect link. You want other Internet traffic to use your existing link to an Internet
Service Provider.
What is the correct way to configure AWS Direct connect for access to services such as Amazon S3?

You are implementing AWS Direct Connect. You intend to use AWS public service end points such as Amazon
S3, across the AWS Direct Connect link. You want other Internet traffic to use your existing link to an Internet
Service Provider.
What is the correct way to configure AWS Direct connect for access to services such as Amazon S3?

A.
Configure a public Interface on your AWS Direct Connect link Configure a static route via your AWS Direct
Connect link that points to Amazon S3 Advertise a default route to AWS using BGP.

B.
Create a private interface on your AWS Direct Connect link. Configure a static route via your AWS Direct
connect link that points to Amazon S3 Configure specific routes to your network in your VPC.

C.
Create a public interface on your AWS Direct Connect link Redistribute BGP routes into your existing routing
infrastructure advertise specific routes for your network to AWS.

D.
Create a private interface on your AWS Direct connect link. Redistribute BGP routes into your existing
routing infrastructure and advertise a default route to AWS.



Leave a Reply 7

Your email address will not be published. Required fields are marked *


kewong

kewong

Answer is A

bobdylon

bobdylon

Answer is C
To connect to public AWS products such as Amazon EC2 and Amazon S3, you need to provide the following:
• A public ASN (Autonomous System Number ) that you own (preferred) or a private ASN.
• Public IP addresses for the BGP session (/31 for each end of the BPG session). If you do not have public IP addresses to assign to this connection, log on to AWS and then open a ticket with AWS Support.
• The public routes that you will advertise over BGP.

Reference : http://docs.aws.amazon.com/directconnect/latest/UserGuide/Welcome.html

bobdylon

bobdylon

Answer is C :

To access public resources in a remote region, you must set up a public virtual interface and establish a border gateway protocol (BGP) session.
After you have created a public virtual interface and established a BGP session to it, your router learns the routes of the other AWS regions in the US.
To begin using your virtual interface, you need to advertise at least one prefix using BGP, up to a maximum of 100 prefixes.

Reference : http://docs.aws.amazon.com/directconnect/latest/UserGuide/remote_regions.html

Turbomcp

Turbomcp

how does this seat with this:
Endpoint connections cannot be extended out of a VPC. Resources on the other side of a VPN connection, a VPC peering connection, an AWS Direct Connect connection, or a ClassicLink connection in your VPC cannot use the endpoint to communicate with resources in the endpoint service.