Question 244:
A Financial organization is deploying 3 tier application servers in VPC created across AZ in the us-east-1 region. All external facing application servers are created in VPC A which access database servers in VPC C. To enhance security for these financial transactions between application & database servers, they have launched servers in VPC B which will perform threat assessment on all traffic. IT Team needs to have all traffic between VPC A & VPC C to pass through VPC B. As an AWS consultant, which of the following solution will meet your requirement with the least administrative overhead?
Answer options:
A.Create a VPN Connection from VGW in VPC B to EC2 instance in VPC A ( VPN tunnel should be opened by VPC-B communicating with VPC-A ) which will analyze all packets before forwarding traffic to VGW in VPC C via a VPN connection. B.Create a VPN Connection from EC2 instance in VPC A to EC2 instance in VPC B which will analyze all packets before tunneling traffic to EC2 in VPC C via a VPN connection. C. Create VPC Peering between VPC A &VPC B and another between VPC B & VPC C. Make Routing changes to pass all traffic from VPC A to VPC C via VPC B.D.Create a VPN Connection from VPC A to VGW in VPC B. Create a separate VGW for a VPN Connection between VPC B& VPC C . Create Routing entries in each VGW which will pass traffic from VPC A to VPC C via VPC B.