Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Nutanix Exam NCP-CI-AWS Topic 4 Question 14 Discussion

Actual exam question for Nutanix's NCP-CI-AWS exam
Question #: 14
Topic #: 4
[All NCP-CI-AWS Questions]

An administrator has deployed an NC2 on AWS cluster that is running mixed workloads. Multiple SQL database are running on the NC2 cluster using a native subnet of 10.78.1.0/24.

The administrator wants to ensure only application servers from source subnet 10.79.1.0/24 that reside outside of the NC2 cluster can access the databases.

Which two actions will help the administrator most securely achieve this? (Choose two.)

A)

B)

C)

D)

Show Suggested Answer Hide Answer
Suggested Answer: A, D

To ensure that only application servers from the source subnet 10.79.1.0/24 can access the SQL databases running on the NC2 cluster in the subnet 10.78.1.0/24, the administrator can take the following actions:

Option A: Create a custom Security Group with the following rules:

Key = tag:nutanix:clusters

Key = tag:nutanix:clusters:external

and value = the clusters' UUID

Key = tag:nutanix:clusters:external

and value = 10.78.1.0/24

Option D: Create a custom Security Group with the following:

Key = nutanix:clusters

Key = nutanix:clusters:external

and value = the clusters' UUID

Key = nutanix:clusters:external

and value = 10.79.1.0/24

These actions help create security rules that restrict access to the databases only from the specified source subnet, ensuring secure and controlled access.


Nutanix Cloud Clusters on AWS Administration

AWS Security Groups Documentation

Contribute your Thoughts:

Brock
2 months ago
Hmm, this question is a piece of cake. All these security-conscious candidates are making me wish I had brought my snacks to the exam. *chuckles*
upvoted 0 times
...
Paris
2 months ago
Option D is just plain wrong. Allowing all traffic to the database is a security nightmare! I hope none of my fellow candidates choose that one.
upvoted 0 times
Arthur
28 days ago
Yeah, Option D is a disaster waiting to happen. Option A and Option C are the way to go for sure.
upvoted 0 times
...
Fletcher
29 days ago
I'm leaning towards Option B and Option C. They seem like the most secure options for this scenario.
upvoted 0 times
...
Ilona
1 months ago
I think Option A and Option C would be the best choices to securely achieve the goal.
upvoted 0 times
...
Alise
2 months ago
I agree, Option D is definitely not the way to go. It's a huge security risk.
upvoted 0 times
...
...
Bernardo
2 months ago
I disagree. I think option B and D would be better to ensure secure access to the databases.
upvoted 0 times
...
Kenneth
2 months ago
Haha, good one! I'll make sure to stock up on energy bars next time. Can't let the security questions distract me from the real task at hand - acing this exam!
upvoted 0 times
Veda
2 months ago
Definitely, focusing on security measures is crucial for acing the exam. Good luck with your preparation!
upvoted 0 times
...
Melvin
2 months ago
I agree, those options look like they would help restrict access to the application servers from the specified subnet.
upvoted 0 times
...
Terrilyn
2 months ago
Option A and Option C seem like the best choices to secure the access to the databases.
upvoted 0 times
...
...
Felton
3 months ago
I agree with Margurite. Option A and C seem like the most secure choices.
upvoted 0 times
...
Margurite
3 months ago
I think the administrator should choose option A and option C.
upvoted 0 times
...
Pamella
3 months ago
Option B and C seem like the most secure choices here. Limiting access to the database from only the application servers in the 10.79.1.0/24 subnet is a good idea.
upvoted 0 times
Lucia
2 months ago
https://www.practice4test.com/question_updater/json_images/NCP-CI-AWS/OtherImage_9e187aa3f-4ccc-4aed-b6bc-a66c3234d174.png
upvoted 0 times
...
Ashanti
2 months ago
https://www.practice4test.com/question_updater/json_images/NCP-CI-AWS/OtherImage_7e187aa3f-4ccc-4aed-b6bc-a66c3234d174.png
upvoted 0 times
...
...

Save Cancel