CompTIA Study Materials
CompTIA A+ CompTIA A+
CompTIA A+ 220-1101 CompTIA A+ 220-1102
CompTIA Network+ CompTIA Network+
CompTIA Network+ N10-008
CompTIA Security+ CompTIA Security+
CompTIA Security+ SY0-601 CompTIA Security+ SY0-701
CompTIA CySA+ CompTIA CySA+
CompTIA CySA+ CS0-003
CompTIA Linux+ CompTIA Linux+
CompTIA Linux+ XK0-005
CompTIA PenTest+ CompTIA PenTest+
CompTIA PenTest+ PT0-002
CompTIA Cloud+ CompTIA Cloud+
CompTIA Cloud+ CV0-003
CompTIA ITF+ CompTIA ITF+
CompTIA ITF+ FC0-U61
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-601 Practice Question

A company is expanding its on-premises data center into the cloud and wants to ensure that their cloud-based databases are not accessible directly from the internet while still allowing the web servers to be reachable by clients. Which of the following actions would BEST secure their databases?

  • Creating a VPN connection from the internet to the database servers.

  • Placing the database servers in private subnets with routes to a NAT gateway.

  • Attaching an Internet Gateway to the subnet where the database servers reside.

  • Using a NACL to block all inbound internet traffic to the database servers.

This question is for objective:
Implementation
Your Score:
Implementation
Architecture and Design
Operations and Incident Response
Governance, Risk, and Compliance
Attacks, Threats, and Vulnerabilities
Wipe Score
SAVE $49
CompTIA Security+ Voucher (SY0-601)
$404.00 $355.00