You want to restrict access to your RDS instance only to EC2 instances in a specific security group. How should you configure the RDS security group inbound rules?

hard📝 Application Q8 of 15

AWS - RDS and Relational Databases

AAllow inbound traffic on the database port from the EC2 instances' security group ID

BAllow inbound traffic from 0.0.0.0/0 on the database port

CAllow inbound traffic only from the EC2 instances' public IP addresses

DAllow inbound traffic from the VPC CIDR block

Step-by-Step Solution

Solution:

Step 1: Understand security group referencing
You can specify another security group as the source in inbound rules to allow traffic from all instances in that group.
Step 2: Identify the best restriction method
Allowing traffic from the EC2 security group ID restricts access to only those instances.
Final Answer:
Allow inbound traffic on the database port from the EC2 instances' security group ID -> Option A
Quick Check:
Use security group ID as source for tight access [OK]

Quick Trick: Use security group ID as source to restrict access [OK]

Common Mistakes:

MISTAKES

Allowing 0.0.0.0/0 which is open to all
Using public IPs which may change
Allowing entire VPC which is less restrictive

Master "RDS and Relational Databases" in AWS

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions

More AWS Quizzes

You want to restrict access to your RDS instance only to EC2 instances in a specific security group. How should you configure the RDS security group inbound rules?

Step 1: Understand security group referencing

Step 2: Identify the best restriction method

Final Answer:

Quick Check:

Want More Practice?