⚡Flash Sale: 33% off Annual Membership, limited time only!⚡

CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-601 Practice Question

A company is expanding its on-premises data center into the cloud and wants to ensure that their cloud-based databases are not accessible directly from the internet while still allowing the web servers to be reachable by clients. Which of the following actions would BEST secure their databases?

  • Using a NACL to block all inbound internet traffic to the database servers.

  • Creating a VPN connection from the internet to the database servers.

  • Placing the database servers in private subnets with routes to a NAT gateway.

  • Attaching an Internet Gateway to the subnet where the database servers reside.

This question's topic:
CompTIA Security+ SY0-601 / 
Implementation
Your Score:
Implementation
Attacks, Threats, and Vulnerabilities
Architecture and Design
Operations and Incident Response
Governance, Risk, and Compliance