Which statement correctly describes how two VPCs communicate when connected by a VPC peering connection?
Think about how private networks connect without using the public internet.
VPC peering enables direct network routing between VPCs using private IPs, without using the internet or VPNs. It does not share resources automatically.
You have two VPCs peered: VPC-A (10.0.0.0/16) and VPC-B (10.1.0.0/16). To enable instances in VPC-A to reach instances in VPC-B, what must you do?
Think about how traffic knows where to go inside a network.
To route traffic to the peered VPC, you must add a route in the source VPC's route table pointing the destination CIDR to the peering connection.
After establishing a VPC peering connection, which security group rule is required to allow inbound traffic from the peered VPC?
Consider how security groups filter traffic based on IP ranges.
Security groups must explicitly allow inbound traffic from the IP range of the peered VPC to permit communication.
Which of the following is a true limitation of AWS VPC peering connections?
Think about how traffic flows through multiple peered VPCs.
VPC peering does not support transitive routing; traffic cannot pass through one peered VPC to reach another.
You have 5 VPCs that need to communicate with each other. What is the best approach to minimize complexity and maintain security?
Consider how to reduce the number of connections while keeping control.
Hub-and-spoke reduces the number of peering connections and centralizes control, improving scalability and security.