A solutions architect is developing a multiple-subnet VPC architecture. The solution will consist of six subnets in two Availability Zones. The subnets are defined as public, private and dedicated for databases. Only the Amazon EC2 instances running in the private subnets should be able to access a database. Which solution meets these requirements?
A) Create a now route table that excludes the route to the public subnets' CIDR blocks. Associate the route table to the database subnets.
B) Create a security group that denies ingress from the security group used by instances in the public subnets. Attach the security group to an Amazon RDS DB instance.
C) Create a security group that allows ingress from the security group used by instances in the private subnets. Attach the security group to an Amazon RDS DB instance.
D) Create a new peering connection between the public subnets and the private subnets. Create a different peering connection between the private subnets and the database subnets.
Correct Answer:
Verified
Q236: A company has an application that generates
Q237: A company is running an online transaction
Q238: An ecommerce website is deploying its web
Q239: A company has an API-based inventory reporting
Q240: A company is preparing to deploy a
Q242: A disaster response team is using drones
Q243: A company is preparing to store confidential
Q244: A company has a mobile game that
Q245: A company is storing sensitive user information
Q246: A company has a multi-tier application deployed
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents