{"id":1418,"date":"2025-02-04T08:35:26","date_gmt":"2025-02-04T08:35:26","guid":{"rendered":"https:\/\/192.168.1.3\/wordpress\/?p=1418"},"modified":"2026-01-26T08:12:47","modified_gmt":"2026-01-26T00:12:47","slug":"aws-solution-architect-professional-sap-c02-review-material-direct-connect","status":"publish","type":"post","link":"https:\/\/mylinuxsite.com\/wordpress\/?p=1418","title":{"rendered":"AWS Solution Architect Professional (SAP-C02) Review Material &#8211; Direct Connect"},"content":{"rendered":"\n<!--more-->\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Overview<\/strong><\/h3>\n\n\n\n<ul class=\"wp-block-list\"><li>Establish a dedicated connection from an on-premises network to one or more VPCs.<\/li><li>Uses industry-standard 802.1Q VLANs to connect to Amazon VPC using private IP addresses. The VLANs are configured using\u00a0<a href=\"https:\/\/docs.aws.amazon.com\/directconnect\/latest\/UserGuide\/WorkingWithVirtualInterfaces.html\">virtual interfaces<\/a>\u00a0(VIFs)<\/li><li>Three (3) Types of VIFs:<ol><li><strong>Public virtual interface<\/strong>\u00a0&#8211; Establish connectivity between AWS public endpoints and your data center, office, or colocation environment.<\/li><li><strong>Private virtual interface<\/strong>\u00a0&#8211; Establish private connectivity between Amazon VPC resources and your data center, office, or colocation environment. The use of private VIFs is shown in the following figure.<\/li><li><strong>Transit virtual interface<\/strong>\u00a0&#8211; Establish private connectivity between AWS Transit Gateway and your data center, office, or colocation environment.\u00a0<\/li><\/ol><\/li><li>Can access any AWS Region from any of Direct Connect locations (except China).\u00a0<\/li><li>Two (2) types of connection:<ol><li><strong>Dedicated connections<\/strong><ul><li>A physical ethernet connection is associated with a <em>single customer<\/em>. <\/li><li>You can order port speeds of 1, 10, or 100 Gbps. <\/li><li>You can use a link aggregation group (LAG) to aggregate multiple connections at a single AWS Direct Connect endpoint<\/li><\/ul><\/li><li><strong>Hosted connections<\/strong><ul><li>A physical ethernet connection is provisioned by an AWS Direct Connect Partner and <em>shared with you<\/em>. <\/li><li>You can order port speeds between 50 Mbps and 10 Gbps. <\/li><li>Capacity on demand.<\/li><\/ul><\/li><\/ol><\/li><li><strong>Gateways:<\/strong><ol><li><strong>Direct Connect Gateway:<\/strong><ul><li>Connects to:<ul><li>Right Side:<ul><li>Direct Connect Router in a Region <\/li><\/ul><\/li><li>Left Side:<ul><li>Transit Gateway (multiple VPCs in the same Region) via Transit VIF  <strong>[ DC Router -> Transit VIF -> DC GW -> TGW ]<\/strong><\/li><li>Virtual Private Gateway (multiple VPCs in different Regions) via Private VIF<strong> [ DC Router -> Private VIF -> DC GW -> VP GW ]<\/strong><\/li><li>AWS Cloud WAN core network<\/li><\/ul><\/li><\/ul><\/li><\/ul><\/li><li><strong>Transit Gateway:<\/strong><ul><li>Connects to multiple VPCs in the same region.<\/li><li>Connects to:<ul><li>Right Side:<ul><li>Direct Connect Gateway <\/li><li>S2S VPN (Public VIF)<\/li><\/ul><\/li><li>Left Side:<ul><li>VPC via DC GW (same Region) <strong> [ DC Router -> Transit VIF -> DC GW ->  TGW -> VPC ]<\/strong><\/li><li>VPC via S2S VPN (same Region)  <strong>[ DC Router -> Public VIF ->  S2S VPN -> TGW -> VPC ]<\/strong><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/li><li><strong>Virtual Private Gateway<\/strong>:<ul><li>Connects to only 1 VPC<\/li><li>Connects to:<ul><li>Right Side:<ul><li>Direct Connect Gateway (Private\/Public VIF)<\/li><li>S2S VPN (Public VIF)<\/li><\/ul><\/li><li>Left Side:<ul><li>VPC via DC GW (multiple regions)  <strong> [ DC Router -> Private VIF -> DC GW ->  VP GW -> VPC ]<\/strong><\/li><li>VPC via S2S VPN (multiple regions)  <strong> [ DC Router -> Public VIF -> S2S VPN -> VP GW -> VPC ]<\/strong><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/li><\/ol><\/li><\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Architecture<\/strong><\/h3>\n\n\n\n<h4 class=\"wp-block-heading\">Basic Architecture:<\/h4>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/docs.aws.amazon.com\/images\/whitepapers\/latest\/aws-vpc-connectivity-options\/images\/aws-direct-connect.png\" alt=\"\"\/><\/figure>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Private VIF<\/strong> is used for connecting to a specific VPC within a single region<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">AWS Direct Connect + AWS Transit Gateway<\/h4>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/docs.aws.amazon.com\/images\/whitepapers\/latest\/aws-vpc-connectivity-options\/images\/aws-direct-connect-and-aws-transit-gateway.png\" alt=\"\"\/><\/figure>\n\n\n\n<ul class=\"wp-block-list\"><li>Requires a <strong>Transit VIF<\/strong>, which connects to a Direct Connect Gateway<\/li><li><strong>Direct Connect Gateway<\/strong> connects to the <strong>Transit Gateway<\/strong> via <strong>Transit Gateway Association<\/strong>.<\/li><li>It can be used to connect to multiple regions.<\/li><li>Use Transit VIF when you want to connect multiple VPCs across different AWS Regions and on-premises networks through a single Direct Connect connection<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">AWS Direct Connect + AWS Site-to-Site VPN<\/h4>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/docs.aws.amazon.com\/images\/whitepapers\/latest\/aws-vpc-connectivity-options\/images\/aws-direct-connect-and-aws-site-to-site-vpn.png\" alt=\"\"\/><\/figure>\n\n\n\n<ul class=\"wp-block-list\"><li>It requires a <strong>Public VIF<\/strong> to connect to an S2S VPN.<\/li><li>Can be used to connect to multiple regions.<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">AWS Direct Connect + AWS Transit Gateway + AWS Site-to-Site VPN<\/h4>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/docs.aws.amazon.com\/images\/whitepapers\/latest\/aws-vpc-connectivity-options\/images\/aws-direct-connect-transit-gateway-site-to-site-vpn-public-vif.png\" alt=\"\"\/><\/figure>\n\n\n\n<ul class=\"wp-block-list\"><li>It requires a <strong>Public VIF<\/strong> to connect to an S2S VPN.<\/li><li>S2S VPN connects directly to a Transit Gateway<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Direct Connect SiteLink<\/h4>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/docs.aws.amazon.com\/images\/whitepapers\/latest\/ec2-networking-for-telecom\/images\/sitelink.jpeg\" alt=\"\"\/><\/figure>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>SiteLink<\/strong> is a feature of AWS Direct Connect that makes it possible to send data from one Direct Connect location to another, bypassing AWS Regions<\/li><\/ul>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[11],"tags":[],"class_list":["post-1418","post","type-post","status-publish","format-standard","hentry","category-aws-review-notes"],"_links":{"self":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/1418","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1418"}],"version-history":[{"count":22,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/1418\/revisions"}],"predecessor-version":[{"id":1918,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/1418\/revisions\/1918"}],"wp:attachment":[{"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1418"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1418"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mylinuxsite.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1418"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}