What is the default behavior of the inbound rules in a newly created AWS default security group?
Think about how AWS isolates instances by default within the same security group.
The default security group allows inbound traffic only from instances that are associated with the same security group. This means instances can communicate with each other but are isolated from others.
What is the default behavior of the outbound rules in a newly created AWS default security group?
Consider how AWS enables instances to reach outside resources by default.
The default security group allows all outbound traffic to any destination by default, enabling instances to initiate connections freely.
If you remove all inbound and outbound rules from the AWS default security group, what will be the effect on instances associated with it?
Think about what happens when no rules allow traffic in or out.
Removing all rules blocks all inbound and outbound traffic, isolating instances completely from each other and the internet.
Which of the following is a potential security risk when using the AWS default security group without modification?
Consider what unrestricted outbound traffic means for security.
The default security group allows all outbound traffic, which could be exploited by malicious software to send data out of the network.
What is the best practice regarding the AWS default security group in a production environment?
Think about security and control in production environments.
Creating custom security groups with tailored rules provides better security and control than relying on the default group.