AWS SAP-C02 · Question 74 · Domain 1.1: Network Connectivity
An enterprise is building a centralized network egress architecture. All internet-bound traffic from 50 VPCs must be routed through a central Egress VPC. The Egress VPC contains a NAT Gateway. The company wants to ensure that if the NAT Gateway in one Availability Zone fails, traffic automatically routes to a NAT Gateway in another Availability Zone. How should the Transit Gateway and VPC routing be configured?
Answer options:
Configure the Transit Gateway route table to failover to the secondary AZ.
Configure the VPC route table to point to a Network Load Balancer (NLB) in front of the NAT Gateways.
This is not natively possible; Transit Gateway routes traffic to the NAT Gateway in the same AZ. High availability requires a NAT Gateway in each AZ.
Use AWS Global Accelerator to route traffic to the healthy NAT Gateway.
75 questions · hints · full answers · grading
Expert