A user has created a VPC with public and private subnets. The VPC has CIDR 20.0.0.0/16. The private subnet uses CIDR 20.0.1.0/24 and the public subnet uses CIDR 20.0.0.0/24. The user is planning to host a web server in the public subnet (port 80) and a DB server in the private subnet (port 3306) . The user is configuring a security group of the NAT instance. Which of the below mentioned entries is not required in NAT's security group for the database servers to connect to the Internet for software updates?
A) For Outbound allow Destination: 0.0.0.0/0 on port 443
B) For Inbound allow Source: 20.0.1.0/24 on port 80
C) For Inbound allow Source: 20.0.0.0/24 on port 80
D) For Outbound allow Destination: 0.0.0.0/0 on port 80
Correct Answer:
Verified
Q394: A Provisioned IOPS volume must be at
Q395: You create an Amazon Elastic File System
Q396: You have been asked to set up
Q397: A company uses Amazon S3 to store
Q398: Which of the following is the final
Q400: A company has created an account for
Q401: A company runs a three-tier application in
Q402: A company is using an Amazon CloudFront
Q403: A company is migrating its on-premises build
Q404: A Solutions Architect has been asked to
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents