Topic 1 Question 348
A company has set up an IPsec tunnel between its AWS environment and its on-premises data center. The tunnel is reporting as UP, but the Amazon EC2 instances are not able to ping any on-premises resources.
What should a SysOps administrator do to resolve this issue?
Create a new inbound rule on the EC2 instances’ security groups to allow ICMP traffic from the on-premises CIDR.
Create a peering connection between the IPsec tunnel and the subnet of the EC2 instances.
Enable route propagation for the virtual private gateway in the route table that is assigned to the subnet of the EC2 instances.
Modify the VPC’s DHCP options set. Add the IPsec tunnel to the VPN section.
ユーザの投票
コメント(4)
- 正解だと思う選択肢: C
C: Enabling route propagation for the virtual private gateway in the route table associated with the subnet of the EC2 instances will allow the VPC route table to learn and propagate the routes for the on-premises network. This ensures that the EC2 instances know how to reach the on-premises resources through the IPsec tunnel.
👍 3Pete9872023/06/30 ccccccccccccccccccCCC
👍 2[Removed]2023/07/09- 正解だと思う選択肢: C👍 2paultantony2023/08/13
シャッフルモード