AWS Certified Solutions Architect Associate SAA-C03 Practice Question

Your company plans to host a set of web applications in the AWS Cloud. Each application should be accessible over the internet but must be isolated from one another to prevent potential security issues. As the Solutions Architect, you need to design a strategy that enforces the isolation while allowing HTTPS traffic to each application. Which approach satisfies these requirements?

  • Create a VPC with multiple public subnets and associate each application with a separate security group that only allows inbound traffic on port 443.

  • Create a VPC with a single public subnet and deploy a Network Access Control List (NACL) that allows inbound traffic on port 22 to ensure secure communication.

  • Configure a single public subnet within a VPC and associate all applications to one security group that allows all inbound traffic.

  • Deploy all applications to a single EC2 instance and control access using the instance's security group to only allow inbound traffic on port 443.

AWS Certified Solutions Architect Associate SAA-C03
Design Secure Architectures
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Bash, the Crucial Exams Chat Bot
AI Bot