1. You are here:
  2. Home
  3. Exams
  4. CLF-C02
  5. A company recently deployed an Amazon RDS instance in its VPC

Exam: AWS Certified Cloud Practitioner 0 Likes

A company recently deployed an Amazon RDS instance in its VPC (CLF-C02)

Updated on 03/16/2024

A company recently deployed an Amazon RDS instance in its VPC. The company needs to implement a stateful firewall to limit traffic to the private corporate network.

Which AWS service or feature should the company use to limit network traffic directly to its RDS instance?

A) Network ACLs.
B) Security groups.
C) AWS WAF.
D) Amazon GuardDuty.

Solution

Correct answer: B) Security groups.
Security groups act as a virtual firewall for Amazon RDS instances, controlling inbound and outbound traffic at the instance level. They are stateful, meaning if you allow traffic in one direction, the response traffic is automatically allowed, regardless of outbound rules. This makes security groups an ideal choice for limiting network traffic directly to the RDS instance, ensuring that only the necessary traffic is allowed to and from the instance.

Category: Security and compliance in the AWS cloud

Language: English

Previous Question Next Question
There are no comments yet.

Authentication required

You must log in to post a comment.
Log in to like this solution

Log in
Cookies Consent

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All" you consent to our use of cookies. Privacy Policy.