SCS-C02 · Question #148
SCS-C02 Question #148: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #148. The question stem and answer options stay visible for context.
Question
A company is implementing a new application in a new AWS account. A VPC and subnets have been created for the application. The application has been peered to an existing VPC in another account in the same AWS Region for database access Amazon EC2 instances will regularly be created and terminated in the application VPC, but only some of them will need access to the databases in the peered VPC over TCP port 1521. A security engineer must ensure that only the EC2 instances that need access to the databases can access them through the network. How can the security engineer implement this solution?
Options
- ACreate a new security group in the database VPC and create an inbound rule that allows all traffic
- BCreate a new security group in the application VPC with an inbound rule that allows the IP
- CCreate a new security group in the application VPC with no inbound rules. Create a new security
- DCreate a new security group in the application VPC with an inbound rule that allows the IP
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.