A network engineer is troubleshooting connectivity between two VPCs (VPC-A and VPC-B) connected via a VPC peering connection. Both VPCs have CIDR blocks: VPC-A = 10.0.0.0/16, VPC-B = 10.1.0.0/16. An EC2 instance in VPC-A (10.0.1.10) cannot ping an EC2 instance in VPC-B (10.1.1.10). Security groups and NACLs allow all traffic. The route tables are configured as follows: In VPC-A, a route to 10.1.0.0/16 via the peering connection. In VPC-B, a route to 10.0.0.0/16 via the peering connection. What is the most likely cause?
Trap 1: The VPCs have overlapping CIDR blocks.
CIDR blocks are different.
Trap 2: Security groups are blocking ICMP traffic.
Security groups allow all traffic.
Trap 3: The route tables are missing routes to the peering connection.
Routes are present.
- A
The VPCs have overlapping CIDR blocks.
Why wrong: CIDR blocks are different.
- B
Security groups are blocking ICMP traffic.
Why wrong: Security groups allow all traffic.
- C
The route tables are missing routes to the peering connection.
Why wrong: Routes are present.
- D
There is an intermediate VPC or on-premises network that routes traffic incorrectly due to the lack of transitive routing.
VPC peering does not allow transitive routing; any intermediate hop would break connectivity.