Q: 19
A company has a reporting application that runs on an Amazon EC2 instance in an isolated developer
account on AWS. The application needs to retrieve data during non-peak company hours from an
Amazon Aurora PostgreSQL database that runs in the companys production account The companys
security team requires that access to production
resources complies with AWS best security practices
A database administrator needs to provide the reporting application with access to the production
database. The company has already configured VPC peering between the production account and
developer account The company has also updated the route tables in both accounts With the
necessary entries to correctly set up VPC peering
What must the database administrator do to finish providing connectivity to the reporting
application?
Add an inbound security group rule to the database security group that allows access from the
developer account VPC CIDR on port 5432. Add an outbound security group rule to the EC2 security
group that allows access to the production account VPC CIDR on port 5432.
Add an outbound security group rule to the database security group that allows access from the
developer account VPC CIDR on port 5432. Add an outbound security group rule to the EC2 security
group that allows access to the production account VPC CIDR on port 5432.
Add an inbound security group rule to the database security group that allows access from the
developer account VPC CIDR on all TCP ports. Add an inbound security group rule to the EC2 security
group that allows access to the production account VPC CIDR on port 5432_
Add an inbound security group rule to the database security group that allows access from the
developer account VPC CIDR on port 5432_ Add an outbound security group rule to the EC2 security
group that allows access to the production account VPC CIDR on all TCP ports
Your Answer
Discussion
No comments yet. Be the first to comment.
Be respectful. No spam.
