Question #1372
A company is designing a cloud architecture that requires a managed solution to interconnect multiple VPCs and on-premises data centers through a centralized hub, aiming to reduce complex peering relationships. Which AWS service should they use?
VPC peering connections
AWS Direct Connect
AWS Transit Gateway
AWS VPN CloudHub
Explanation
AWS Transit Gateway (Option C) is designed to simplify network architecture by acting as a centralized hub for connecting multiple VPCs and on-premises networks via VPN or AWS Direct Connect. It replaces complex mesh peering with a single managed service, enabling scalable and efficient routing.
Why other options are incorrect:
- A. VPC peering connections: Requires a full mesh of point-to-point connections between VPCs, leading to complexity as the number of VPCs grows.
- B. AWS Direct Connect: Establishes dedicated network links to AWS but does not inherently manage VPC-to-VPC or centralized hub routing.
- D. AWS VPN CloudHub: Connects remote sites via VPN but is not optimized for VPC-to-VPC or hybrid architectures with a centralized hub.
Key Points:
- Transit Gateway simplifies hub-and-spoke topologies.
- Reduces operational overhead compared to manual peering.
- Supports hybrid cloud architectures (VPCs + on-premises).
Answer
The correct answer is: C