Public and private subnet VPC design
WHAT IT TESTS: core VPC networking. OUTLINE: web server in a public subnet routed to an internet gateway, database in a private subnet with no inbound from the internet, NAT for outbound. RED FLAG: placing the database in a public subnet or relying only on.
WHAT IT TESTS: whether you can build the standard public/private subnet topology. ANSWER OUTLINE: create a public subnet whose route table sends 0.0.0.0/0 to an internet gateway and place the web server there with a public IP. Put the database in a private subnet with no internet-gateway route, allowing inbound only from the web tier's security group, and use a NAT gateway for the database's outbound updates. RED FLAG: putting the database in a public subnet, or trusting security groups alone without proper subnet routing isolation.
Read the original → interview
- #vpc
- #networking
- #subnets
- #nat-gateway
- #security
Get five bites like this every day.
Tezvyn delivers a daily feed of 60-second tech bites with quizzes to lock in what you learn.