Answer-first summary for fast verification
Answer: Use a combination of public and private subnets with network ACLs
The recommended strategy for network segmentation in a multi-tier application is to use a combination of public and private subnets within the VPC. The web tier can be deployed in public subnets, while the application and database tiers can be deployed in private subnets. Network ACLs can be used to control traffic between the different subnets and tiers.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company has a multi-tier web application hosted in an Amazon VPC. They want to implement network segmentation to isolate the web tier from the application tier and the database tier for security purposes. What is the recommended strategy for network segmentation in this scenario?
A
Use separate VPCs for each tier
B
Use security groups to control traffic between tiers
C
Use a combination of public and private subnets with network ACLs
D
Use AWS Transit Gateway to route traffic between tiers
No comments yet.