How can the organization setup this scenario?

By:
On:
In: SAP-C01
Tagged:
With: 0 Comments
An organization is having a VPC for the HR department, and another VPC for the Admin department.The HR department requires access to all the instances running in the Admin VPC while the Admin department requires access to all the resources in the HR department.

How can the organization setup this scenario?

Setup VPC peering between the VPCs of Admin and HR.

Setup ACL with both VPCs which will allow traffic from the CIDR of the other VPC.

Setup the security group with each VPC which allows traffic from the CIDR of another VPC.

It is not possible to connect resources of one VPC from another VPC.

Explanations:

VPC peering allows two VPCs to communicate with each other directly. This setup is suitable for the requirement where both the HR and Admin departments need access to resources in each other’s VPCs. It establishes a networking connection that allows instances in both VPCs to communicate as if they are within the same network.

Setting up Access Control Lists (ACLs) alone will not establish connectivity between the two VPCs. While ACLs can control traffic, they cannot facilitate communication between separate VPCs; VPC peering is necessary for that purpose.

Security groups operate within a single VPC and cannot reference resources from another VPC directly. While you can set up rules in each VPC’s security group to allow traffic from certain IP ranges, it does not create a connection between the two VPCs.

It is indeed possible to connect resources from one VPC to another VPC through methods like VPC peering, VPN connections, or AWS Transit Gateway. Thus, this statement is false.

Leave a Reply

Your email address will not be published. Required fields are marked *

seventeen − eight =