The VPN connection gives you two tunnels to connect to for high availability. If only one tunnel is connected, AWS will periodically send out a notification stating that your VPN link is not redundant.​
Question | Answer | Explanation |
1 | A, D | A hosted connection can be provided by a partner, as well as a hosted virtual interface, if your organization already has another Direct Connect link. |
2 | D | Promiscuous mode is not allowed in AWS. If you are scanning traffic, you will need to route all the traffic from the VPC to a separate VPC where the appliance will intercept and monitor your traffic. |
3 | B | To make a WAF deployment highly available, you can use the WAF sandwich approach. |
4 | B | VPC peering will allow you to communicate with the other account and authenticate. |
5 | C | Each EC2 instance performs source/destination checks by default. This means that the instance... |