A customer has established an AWS Direct Connect connection to AWS. The link is up and routes are being
advertised from the customer’s end, however the customer is unable to connect from EC2 instances inside its
VPC to servers residing in its datacenter.
Which of the following options provide a viable solution to remedy this situation? (Choose 2)
A.
Add a route to the route table with an iPsec VPN connection as the target.
B.
Enable route propagation to the virtual pinnate gateway (VGW).
C.
Enable route propagation to the customer gateway (CGW).
D.
Modify the route table of all Instances using the ‘route’ command.
E.
Modify the Instances VPC subnet route table by adding a route back to the customer’s on-premises
environment.
CE
BE
Correct.
A) If you’re already connected with DirectConnect, no need for IPSec VPN to be involved
C) The VGW updates the route table, not the CGW see https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Route_Tables.html#EnableDisableRouteProp
BE is my choice
route propagation is on Virtual Private Gateway on the vpc side rather than the Customer Gateway.
be