Practice Test

AWS Site-to-Site VPN connection does not need to be over the public internet.

  • True
  • False

Answer: False

Explanation: AWS Site-to-Site VPN connections are indeed done over the public internet.

AWS Direct Connect provides a private connection to your VPC.

  • True
  • False

Answer: True

Explanation: AWS Direct Connect gives you a dedicated, private connection to your VPC which is not over the internet.

The following are characteristics of AWS VPN, except?

  • It is secure
  • It enables connectivity via the internet
  • It demands high maintenance
  • It is budget-friendly

Answer: It demands high maintenance

Explanation: AWS VPN is easy to manage with minimal maintenance requirement, making it an efficient tool for connection.

AWS Direct Connect delivery speed can range up to 10 Gbps.

  • True
  • False

Answer: True

Explanation: With AWS Direct Connect, you can choose data transfer rates ranging from 1 Gbps to 10 Gbps.

Which type of AWS Direct Connect connection requirement needs to be ordered from an APN partner?

  • Port speed less than 1 Gbps
  • Port speed greater than 1 Gbps

Answer: Port speed less than 1 Gbps

Explanation: Direct Connect supports dedicated connections with port speeds of 1 Gbps and 10 Gbps. For a port speed less than 1 Gbps, you would need a hosted connection which should be ordered from an AWS Direct Connect partner.

AWS Site-to-Site VPN supports client-based remote access VPN connections.

  • True
  • False

Answer: False

Explanation: AWS Client VPN supports this, not AWS Site-to-Site VPN.

AWS Direct Connect does not surpass VPN connections in speed.

  • True
  • False

Answer: False

Explanation: AWS Direct Connect actually delivers more consistent network experience than the Internet-based VPN connections.

What type of connection does AWS VPN provide from your network to the AWS network?

  • Private
  • Public

Answer: Private

Explanation: AWS VPN provides a secure private connection from your network to AWS network using the Internet.

How is AWS Direct Connect different from AWS Site-to-Site VPN?

  • It provides dedicated physical connectivity
  • It demands high performance
  • It enables connectivity via the internet

Answer: It provides dedicated physical connectivity

Explanation: Unlike Site-to-Site VPN, which allows access over the internet, Direct Connect provides a dedicated physical connection between your network and AWS.

A customer with high-performance requirements and an intranet application running on AWS will ideally choose ______.

  • AWS Direct Connect
  • AWS VPN

Answer: AWS Direct Connect

Explanation: When high performance is a requirement, AWS Direct Connect is a recommended connectivity option because of its consistent, dedicated connection.

AWS Managed VPN can be categorized under Site-to-Site VPN.

  • True
  • False

Answer: True

Explanation: AWS Managed VPN is a part of AWS Site-to-Site VPN and enables secure connectivity from on-premises networks and branch offices to AWS.

AWS Direct Connect provides bandwidth up to 40 Gbps.

  • True
  • False

Answer: False

Explanation: AWS Direct Connect provides users with a dedicated network connection from their premises to AWS with bandwidth up to 10 Gbps.

The AWS VPN service ensures secure access to AWS resources but not to the public internet.

  • True
  • False

Answer: False

Explanation: The AWS VPN service can be used to securely access both AWS resources and public Internet resources.

AWS Direct Connect does not offer a more stable and secure network when compared to AWS VPN.

  • True
  • False

Answer: False

Explanation: AWS Direct Connect offers a more consistent network experience and it’s generally more secure than traditional internet-based connections.

AWS Direct Connect cannot lower the network costs for data transfer.

  • True
  • False

Answer: False

Explanation: By transferring data to and from AWS directly, reducing your bandwidth commitment to your Internet service provider, AWS Direct Connect can reduce your network costs.

Interview Questions

What is AWS Direct Connect?

AWS Direct Connect is a cloud service solution that establishes a dedicated network connection from your premises to AWS. This improves network speed, data transfer security, and reduces bandwidth costs.

What is the AWS VPN and how does it function?

AWS VPN connects your private network to your Amazon Virtual Private Cloud (VPC). It establishes a secure, private connection between your network and the AWS VPC using secure tunneling protocols.

How is data transferred using AWS Direct Connect?

Data is transferred over a dedicated connection from the on-premise environment directly to AWS. It bypasses the Internet Service Provider’s network, thus offering more reliability, faster speeds, lower latencies, and significant cost benefits.

How does AWS VPN enhance security when connecting to your AWS environment?

With AWS VPN, all the network traffic between your network and AWS is encrypted, providing a secure channel for data transfer. This greatly reduces the threat of data being compromised.

Can you use both AWS VPN and Direct Connect simultaneously?

Yes, AWS VPN and Direct Connect can be used together, providing a ‘fail-safe’ connection. If either VPN or Direct Connect goes down, the other will still provide a connection to your AWS environment.

What is the difference between AWS Direct Connect and AWS VPN?

AWS Direct Connect provides a dedicated, consistent network connection directly to the AWS cloud, while AWS VPN provides a secure, encrypted connection over the internet to AWS.

What are the benefits of AWS Direct Connect over a VPN?

AWS Direct Connect provides a more reliable and consistent network experience than internet-based connections, and it often provides reduced data transfer costs.

What is a AWS Site-to-Site VPN?

AWS Site-to-Site VPN is a service that allows you to connect your on-premise network to AWS over a secure, private tunnel.

What are the components required to establish a site-to-site VPN connection to AWS network?

To establish a Site-to-Site VPN connection, you need a customer gateway, virtual private gateway, and the information required to configure these items on your end.

Can I have multiple Virtual Private Gateways for one VPC in AWS VPN?

No, Amazon VPC supports one Virtual Private Gateway per VPC.

what is a transit gateway in AWS?

The transit gateway is a network transit hub that you can use to interconnect your Virtual Private Clouds (VPC) and on-premises networks.

Does AWS Direct Connect provides encryption?

No, AWS Direct Connect does not automatically encrypt data in transit. It provides a private network path but, for encryption, you can implement additional security protocols.

Can AWS Direct Connect links be aggregated?

Yes, it is possible to aggregate multiple Direct Connect links to increase bandwidth and provide redundancy in case of a link failure.

Can AWS VPN be used to connect two VPCs?

Yes, using the AWS VPN CloudHub, two VPCs can be connected to a common gateway, allowing the two VPCs to communicate with each other.

What AWS product can be used to provide network connectivity from many different geographical locations to AWS?

AWS Global Accelerator is designed to improve the availability and performance of your applications for your users around the globe.

Leave a Reply

Your email address will not be published. Required fields are marked *