You want to host a web server accessible from the internet and a database only accessible internally. How should you design your subnets?

hard📝 Best Practice Q15 of 15

AWS - VPC Fundamentals

APlace both web server and database in private subnets and use a VPN for access.

BPlace both web server and database in a public subnet with security groups restricting access.

CPlace the web server in a private subnet and the database in a public subnet.

DPlace the web server in a public subnet and the database in a private subnet.

Step-by-Step Solution

Solution:

Step 1: Identify subnet roles for internet access
The web server needs internet access, so it belongs in a public subnet with a route to the internet gateway.
Step 2: Secure the database internally
The database should be in a private subnet without direct internet access to keep it secure.
Final Answer:
Place the web server in a public subnet and the database in a private subnet. -> Option D
Quick Check:
Internet-facing resources in public, internal in private [OK]

Quick Trick: Web server public, database private subnet [OK]

Common Mistakes:

Master "VPC Fundamentals" in AWS

9 interactive learning modes - each teaches the same concept differently

Want More Practice?

15+ quiz questions · All difficulty levels · Free

More AWS Quizzes