A company developed a new application that is deployed on Amazon EC2 instances behind an Application Load Balancer. The EC2 instances use the security group named sg-application-servers. The company needs a database to store the data from the application and decides to use an Amazon RDS for MySQL DB instance. The DB instance is deployed in private DB subnet. What is the MOST restrictive configuration for the DB instance security group?
A) Only allow incoming traffic from the sg-application-servers security group on port 3306.
B) Only allow incoming traffic from the sg-application-servers security group on port 443.
C) Only allow incoming traffic from the subnet of the application servers on port 3306.
D) Only allow incoming traffic from the subnet of the application servers on port 443.
Correct Answer:
Verified
Q123: An online advertising website uses an Amazon
Q124: A company is closing one of its
Q125: A company migrated one of its business-critical
Q126: A company is running an Amazon RDS
Q127: A gaming company is developing a new
Q129: A startup company is building a new
Q130: A large automobile company is migrating the
Q131: A company is running an on-premises application
Q132: A finance company needs to make sure
Q133: A company released a mobile game that
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents