You want to isolate two applications in the same AWS account so they cannot access each other's resources. Which VPC design best achieves this?

hard📝 Best Practice Q15 of 15

AWS - VPC Fundamentals

ACreate one VPC with separate subnets and use security groups to isolate traffic.

BCreate two separate VPCs with non-overlapping CIDR blocks and no peering.

CUse one VPC and rely on route tables to block traffic between subnets.

DCreate one VPC and use a single security group for all instances.

Step-by-Step Solution

Solution:

Step 1: Understand isolation requirements
Complete isolation means no network path between applications.
Step 2: Evaluate design options
Separate VPCs with no peering ensure full network isolation. One VPC with subnets or security groups can isolate but is less strict and more complex.
Final Answer:
Create two separate VPCs with non-overlapping CIDR blocks and no peering. -> Option B
Quick Check:
Separate VPCs = full network isolation [OK]

Quick Trick: Use separate VPCs without peering for full isolation [OK]

Common Mistakes:

MISTAKES

Master "VPC Fundamentals" in AWS

9 interactive learning modes - each teaches the same concept differently

Want More Practice?

15+ quiz questions · All difficulty levels · Free

More AWS Quizzes