Transit VPC and Transit Gateway Quiz

Questions and Answers

PDF Questions PDF Answers

Which service is used to save the connection information to an Amazon S3 bucket?

Amazon EC2

Amazon S3 (correct)

Amazon Lambda

Amazon RDS

Which service is used to encrypt the data in the S3 bucket?

Amazon RDS

Amazon EC2

Amazon S3

Amazon Kinesis (correct)

Which event triggers the VPN Configurator Lambda function?

S3 Put event (correct)

EC2 Stop event

EC2 Start event

S3 Get event

What does the VPN Configurator Lambda function do?

Generates configuration files

How are the configuration files pushed to the VPN device instances?

Using SSH

What happens when the VPN configuration is applied to the FortiGate devices?

VPN tunnels come up

What does the VGW poller do when it identifies an applicable spoke VGW?

Saves connection information to S3 bucket

What is used to encrypt the data in the S3 bucket?

AWS KMS-managed customer master key

What type of key is used to encrypt the data in the S3 bucket?

Service-managed key

Which of the following is a benefit of using a transit VPC?

Enables transitivity between VPC peering connections

What is the main purpose of a transit VPC?

To provide a centralized network transit center

What type of topology is used in a transit VPC?

Hub and spoke

What connects the hub VPC to the spoke VPCs in a transit VPC?

VPN tunnels

What is the purpose of the FortiGate VM appliances in a transit VPC?

To connect the hub VPC to the spoke VPCs

Why is it recommended to automate the setup of a transit VPC?

To avoid manual configuration errors

What triggers the VGW Poller Lambda function in the automated setup of a transit VPC?

AWS CloudWatch events

What does the VGW Poller Lambda function search for in the automated setup of a transit VPC?

Appropriately tagged spoke VGWs

What is the default tag key and value used to identify spoke VGWs in the automated setup of a transit VPC?

transit-vpc: spoke, true