AWS Certified Solutions Architect Associate SAA-C03 Practice Question
A company is deploying a multi-tier web application on AWS. The application consists of front-end web servers and back-end database servers. The web servers must be accessible from the internet, while the database servers must not be accessible from the internet but should communicate with the web servers. Which network segmentation strategy should be used to meet these requirements?
Place both web servers and database servers in a private subnet.
Place both web servers and database servers in a public subnet.
Place the web servers in a private subnet and the database servers in a public subnet.
Place the web servers in a public subnet and the database servers in a private subnet.