Which solution meets these requirements?
Set up a 10 Gbps AWS Direct Connect connection at two Direct Connect locations. Use two customer routers and dynamically routed, active/active connections.
Set up a 10 Gbps AWS Direct Connect connection. Use a Direct Connect gateway to support both Regions.
Establish an AWS Direct Connect connection for the primary connection to the VPC with an AWS-managed VPN connection as a backup.
Establish 10 VPN connections to the VPC. Enable the VPN Equal Cost Multipath (ECMP) feature to balance traffic over the active connections.
Explanations:
Setting up a 10 Gbps AWS Direct Connect connection at two locations provides redundancy and fault tolerance. Using two customer routers with active/active connections ensures high availability, low latency, and resilience across both data centers. This meets the company’s requirement for high resilience and fault tolerance.
A 10 Gbps AWS Direct Connect connection with a Direct Connect gateway does not provide sufficient redundancy or fault tolerance. It would only connect the primary VPC to the secondary Region, but the solution does not fulfill the requirement for resilience and redundancy in case of failure.
A single AWS Direct Connect connection combined with an AWS-managed VPN connection as a backup does not meet the high resilience requirement for at least 10 Gbps. The backup VPN connection is typically slower and does not provide the same level of performance or fault tolerance as an active/active solution.
Establishing 10 VPN connections with the ECMP feature may provide some redundancy, but VPN connections are typically not suitable for meeting low-latency, high-bandwidth requirements of 10 Gbps. VPN connections are also less resilient than Direct Connect and may not provide the required performance or fault tolerance.
If I’m not mistaken, the answer is:
Set up a 10 Gbps AWS Direct Connect connection at two Direct Connect locations. Use two customer routers and dynamically routed, active/active connections.