Topic 1 Question 72
A company hosts its website on Amazon EC2 instances in the us-east-1 Region. The company is preparing to extend its website into the eu-central-1 Region, but the database must remain only in us-east-1. After deployment, the EC2 instances in eu-central-1 are unable to connect to the database in us-east-1. What is the MOST operationally efficient solution that will resolve this connectivity issue?
Create a VPC peering connection between the two Regions. Add the private IP address range of the instances to the inbound rule of the database security group.
Create a VPC peering connection between the two Regions. Add the security group of the instances in eu-central-1 to the outbound rule of the database security group.
Create a VPN connection between the two Regions. Add the private IP address range of the instances to the outbound rule of the database security group.
Create a VPN connection between the two Regions. Add the security group of the instances in eu-central-1 to the inbound rule of the database security group.
ユーザの投票
コメント(6)
- 正解だと思う選択肢: A
Correct answer is A! VPN options are out of the question. We are left with add the IP address or a security group rule, but since you cannont create a security group rule that references a peer VPC security group, than the answer is clearly A.
👍 5princajen2022/09/01 - 正解だと思う選択肢: A
aaaaaaaaa
👍 2michaldavid2022/12/09 - 正解だと思う選択肢: B
By creating a VPC peering connection between the two Regions and adding the security group of the instances in eu-central-1 to the outbound rule of the database security group, you can establish a direct network connection between the two VPCs and allow the instances in eu-central-1 to communicate with the database in us-east-1. This is the most operationally efficient solution because it allows for faster and more efficient communication between the two VPCs
👍 2MrMLB2022/12/15
シャッフルモード