Q101 — AWS SAA-C03 Ch.4

Question 101 of 105 | ← Chapter 4

Q296. A company wants to deploy a new public web application on AWS. The application includes a web server tier that uses Amazon EC2 instances. The application also includes a database tier that uses an Amazon RDS for MySQL DB instance.The application must be secure and accessible for global customers that have dynamic IP addresses. How should a solutions architect configure the security groups to meet these requirements?

Correct Answer: A. Configure the security group for the web servers to allow inbound traffic on port 443 from 0.0.0.0/0.Configure the security group for the DB instance to allow inbound traffic on port 3306 from the security group of the web servers.