True or False: When you add a rule to a DB security gro…

True or False: When you add a rule to a DB security group, you do not need to specify port number or protocol.

True or False: When you add a rule to a DB security group, you do not need to specify port number or protocol.

A.
Depends on the RDMS used

B.
TRUE

C.
FALSE

Explanation:
You no need to specify Port or Protocol for DB security group. Only VPC/instance security group only needed.
http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.RDSSecurityGroups.html

Show Hint

Leave a Reply 4

Your email address will not be published. Required fields are marked *

joy

joy

B:You do not need to specify a destination port number when you create DB security group rules; the port number defined for the DB instance is used as the destination port number for all rules defined for the DB security group. DB security groups can be created using the Amazon RDS APIs or the Amazon RDS page of the AWS Management Console.

Reply

joy

joy

C is the correct answer because you cant create a security group without port or protocol unless that is a destination port because the port number defined for the DB instance is used as the destination port number for all rules defined for the DB security group

Reply

Abdul

Abdul

B:
DB Security Groups
DB security groups are used with DB instances that are not in a VPC and on the EC2-Classic platform. Each DB security group rule enables a specific source to access a DB instance that is associated with that DB security group. The source can be a range of addresses (for example, 203.0.113.0/24), or an EC2 security group. When you specify an EC2 security group as the source, you allow incoming traffic from all EC2 instances that use that EC2 security group. DB security group rules apply to inbound traffic only; outbound traffic is not currently permitted for DB instances.

You don’t need to specify a destination port number when you create DB security group rules. The port number defined for the DB instance is used as the destination port number for all rules defined for the DB security group. DB security groups can be created using the Amazon RDS API actions or the Amazon RDS page of the AWS Management Console.

For more information about working with DB security groups, see Working with DB Security Groups (EC2-Classic Platform).

https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.RDSSecurityGroups.html

Reply