An organization has multiple applications running in VPCs across multiple AWS accounts. The network engineer has deployed a central VPC with a pair of software VPN instances that run IPSec tunnels with dynamic routing to VGWs of all application VPCs. This central VPC is connected to on-premises resources via a Direct Connect connection using a private VIF. What additional configuration is required to enable the applications in VPCs to communicate with each other and access on-premises resources?
A) Configure each application VPC with a static route entry pointing the on-premises CIDR block to the software VPN instances.
B) Configure the central VPC with a static route entry pointing the on-premises CIDR block to local VGWs.
C) Advertise all application VPC CIDR blocks to on-premises resources via the VGW in the central VPC.
D) Configure IPSec tunnels from the on-premises router into the software VPN instances with dynamic routing.

Question

Quizplus · Accepted Answer

The Answer of An organization has multiple applications running in VPCs across multiple AWS accounts. The network engineer has deployed a central VPC with a pair of software VPN instances that run IPSec tunnels with dynamic routing to VGWs of all application VPCs. This central VPC is connected to on-premises resources via a Direct Connect connection using a private VIF. What additional configuration is required to enable the applications in VPCs to communicate with each other and access on-premises resources?
A) Configure each application VPC with a static route entry pointing the on-premises CIDR block to the software VPN instances.
B) Configure the central VPC with a static route entry pointing the on-premises CIDR block to local VGWs.
C) Advertise all application VPC CIDR blocks to on-premises resources via the VGW in the central VPC.
D) Configure IPSec tunnels from the on-premises router into the software VPN instances with dynamic routing.

An Organization Has Multiple Applications Running in VPCs Across Multiple