VPN Connectivity to AWS VPC: Solutions for 100 Mobile Devices, 40 Remote Computers, and Site Office

Connectivity Options for VPN in AWS VPC

Prev Question Next Question

Question

Your company needs VPN connectivity to an AWS VPC.

There are around 100 mobile devices, 40 remote computers and a site office that needs to connect.

How would you achieve this connectivity? Choose 2 answers from the options given below.

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - A and C.

AWS Client VPN is a managed client-based VPN service that enables you to securely access your AWS resources and resources in your on-premises network.

With Client VPN, you can access your resources from any location using an OpenVPN-based VPN client.

Since there is no mechanism currently for point-to-site connectivity for individual devices, you need to use a custom VPN server.

Configurations for the custom VPN should be managed accordingly by the user.

Option B is incorrect, since you cannot use AWS Managed VPN for these devices.

Option D is incorrect, since AWS Direct connect should not be used for this requirement.

For more information on VPN Connections, please refer to the below URL.

https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/what-is.html#what-is-features https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_VPN.html

To achieve VPN connectivity to an AWS VPC for 100 mobile devices, 40 remote computers and a site office, the following two options can be chosen:

A. Use AWS Client VPN: AWS Client VPN is a managed client-based VPN service that enables users to securely access AWS and on-premises resources. It eliminates the need for users to configure and manage their own VPN servers. AWS Client VPN supports both SSL/TLS and IPsec protocols, and it is scalable to support thousands of simultaneous connections. It also integrates with AWS Identity and Access Management (IAM) for authentication and authorization. Using AWS Client VPN would provide a simple and scalable solution for providing VPN connectivity to the 100 mobile devices and 40 remote computers.

B. Use AWS Managed VPN for mobile and remote computers: AWS Managed VPN is a managed IPsec VPN service that allows you to connect your on-premises networks to AWS over the Internet. It provides site-to-site connectivity between on-premises data centers and Amazon VPCs, and it can support up to 10 Gbps of throughput. Using AWS Managed VPN would provide a secure and reliable solution for providing VPN connectivity to the 100 mobile devices and 40 remote computers.

Therefore, the combination of AWS Client VPN and AWS Managed VPN would be the ideal solution for achieving VPN connectivity to an AWS VPC for the given scenario.

C. Using a custom VPN server to accept connections from mobile and remote computers can also be an option, but it would require significant resources and management overhead.

D. Using AWS Direct Connect with a public VIF for the site office is not necessary for achieving VPN connectivity to an AWS VPC, as it is primarily used for providing dedicated network connections to AWS services.