312-50V13 · Question #12
312-50V13 Question #12: Real Exam Question with Answer & Explanation
The correct answer is B: A web server facing the Internet, an application server on the internal network, a database server. For a secure web application architecture exposed to the internet, a multi-tier approach with distinct security zones for each server type is recommended.
Question
You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recommended architecture in terms of server placement?
Options
- AAll three servers need to be placed internally
- BA web server facing the Internet, an application server on the internal network, a database server
- CA web server and the database server facing the Internet, an application server on the internal
- DAll three servers need to face the Internet so that they can communicate between themselves
Explanation
For a secure web application architecture exposed to the internet, a multi-tier approach with distinct security zones for each server type is recommended.
Common mistakes.
- A. Placing all three servers internally would make the web application inaccessible from the Internet, contradicting the requirement for Internet availability.
- C. Placing both the web server and the database server directly facing the Internet significantly increases the attack surface for the most critical component (the database), which stores sensitive data.
- D. Placing all three servers directly on the Internet exposes all components to direct attacks, representing a severe security vulnerability, especially for application and database servers.
Concept tested. Multi-tier web application architecture
Reference. https://learn.microsoft.com/en-us/azure/architecture/guide/architecture-styles/web-queue-worker
Topics
Community Discussion
No community discussion yet for this question.