Question 57:
A company hosts a popular web application that connects to an Amazon RDS MySQL DB instance running in a default VPC private subnet with NACL settings that was created by AWS as default. The web servers must be accessible only to customers on HTTPS connections, and the database must only be accessible to web servers in a public subnet. Which solution would meet these requirements without impacting other applications? (SELECT TWO)
Answer options:
A.Create a network ACL on the Web Server`s subnets, allow HTTPS port 443 inbound and specify the source as 0.0.0.0/0. B.Create a Web Server security group that allows HTTPS port 443 inbound traffic from anywhere (0.0.0.0/0) and apply it to the Web Servers. C.Create a DB Server security group that allows MySQL port 3306 inbound and specify the source as the Web Server security group. D.Create a network ACL on the DB subnet, allow MySQL port 3306 inbound for Web Servers and deny all outbound traffic. E.Create a DB Server security group that allows HTTPS port 443 inbound and specify the source as a Web Server security group.
