Your team is planning to develop and deploy an application onto AWS with the following architecture. · A set of EC2 Instances in a VPC hosting the web tier · A database hosted using the AWS RDS MySQL instance Which of the following should ideally be set so that only HTTPS users can access the web application and for the web application to access the database? (Choose 2)
Click on the arrows to vote for the correct answer
A. B. C. D.Answer - A and D.
Option A is correct because port 443 will allow only HTTPS traffic from all sources.
Option D is correct because the Database server Security Group must allow traffic from the source Web server on port 3306.
Option B is invalid since the database should not be exposed to the Internet.
Option C is invalid since the database security group should allow incoming traffic on port 3306.
Please refer to the below URL and go to the Security section for more information on this scenario.
https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Scenario2.htmlTo ensure that only HTTPS users can access the web application and for the web application to access the database, the following steps should be taken:
Therefore, answer A is correct.
Therefore, answer D is correct.
Option B is not correct because allowing traffic from any IP address to the database layer on port 443 would open up a security vulnerability, as it would allow anyone to connect to the database.
Option C is also not correct because allowing traffic from the web tier to the database on port 3306 would expose the database to potential security threats from the internet.
In summary, the correct answers are A and D.