A. Move the Aurora database into a private subnet that has no internet access routes in the database’s current VPC. Configure the Lambda functions to use the Aurora database’s new private IP address to access the database. Configure the Aurora database’s security group to allow access from the private IP addresses of the Lambda functions.
B. Establish a VPC endpoint between the two VPCs. In the Aurora database’s VPC, configure a service VPC endpoint for Amazon RDS. In the Lambda functions’ VPC, configure an interface VPC endpoint that uses the service endpoint in the Aurora database’s VPC. Configure the service endpoint to allow connections from the Lambda functions Most Voted
C. Establish an AWS Direct Connect interface between the VPCs. Configure the Lambda functions to use a new route table that accesses the Aurora database through the Direct Connect interface. Configure the Aurora database’s security group to allow access from the Direct Connect interface IP address,
D. Move the Lambda functions into a public subnet in their VPC. Move the Aurora database into a private subnet in its VPC. Configure the Lambda functions to use the Aurora database’s new private IP address to access the database. Configure the Aurora database to allow access from the public IP addresses of the Lambda functions.