Answer-first summary for fast verification
Answer: Verify security group rules for both the Lambda function and the RDS instance to allow appropriate port 1433 access., Confirm the Lambda function's execution role has permissions for creating, describing, and deleting VPC network interfaces.
The correct answers are A and E. Option A is correct because the security group of the Lambda function must have outbound access on port 1433 to the DB instance's security group, and the DB instance's security group must have inbound access on port 1433 from the function's security group. This configuration ensures that traffic can correctly flow between the Lambda function and the RDS instance. Option E is correct because the Lambda function's execution role must have permissions for creating, describing, and deleting network interfaces within the VPC (ec2:CreateNetworkInterface, ec2:DescribeNetworkInterfaces, and ec2:DeleteNetworkInterface). Without these permissions, the Lambda function cannot manage the necessary network interfaces to establish connections within the VPC.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A developer is troubleshooting a Lambda function in a VPC that fails to connect to a private subnet-hosted Amazon RDS SQL Server instance on port 1433. What steps should be taken to diagnose the connectivity issue?
A
Verify security group rules for both the Lambda function and the RDS instance to allow appropriate port 1433 access.
B
Ensure security group configurations permit necessary port 1433 traffic between the Lambda function and the RDS instance.
C
Check if the VPC is configured with a NAT gateway and if the RDS instance is set to allow public access.
D
Validate that the Lambda function's execution role includes permissions for RDS instance management.
E
Confirm the Lambda function's execution role has permissions for creating, describing, and deleting VPC network interfaces.
No comments yet.