You want to design a multi-tier AWS app with a public web tier, private application tier, and private database tier. Which setup best follows best practices?

hard📝 Best Practice Q15 of 15

AWS - Architecture Best Practices

APlace all tiers in public subnets with direct internet access for simplicity

BPlace web servers in public subnet with internet gateway; app and database servers in private subnets with NAT gateway for outbound internet

CPlace web and app tiers in private subnets; database in public subnet for easy access

DPlace web tier in private subnet; app and database tiers in public subnets

Step-by-Step Solution

Solution:

Step 1: Assign subnet types based on tier roles
Web tier needs public subnet for user access; app and database tiers should be private for security.
Step 2: Provide outbound internet for private tiers
Use NAT gateway so private tiers can access internet for updates without exposing them inbound.
Final Answer:
Place web servers in public subnet with internet gateway; app and database servers in private subnets with NAT gateway for outbound internet -> Option B
Quick Check:
Public web, private app/db, NAT for outbound [OK]

Quick Trick: Public web, private app/db, NAT gateway outbound [OK]

Common Mistakes:

Putting database in public subnet
Giving private tiers direct internet access
Mixing subnet roles incorrectly

Master "Architecture Best Practices" in AWS

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions

More AWS Quizzes

You want to design a multi-tier AWS app with a public web tier, private application tier, and private database tier. Which setup best follows best practices?

Step 1: Assign subnet types based on tier roles

Step 2: Provide outbound internet for private tiers

Final Answer:

Quick Check:

Want More Practice?