AWS - Security Groups and Network ACLs
You want to allow inbound HTTP traffic from the internet to an EC2 instance in the default security group. What is the best approach?
You want to allow inbound HTTP traffic from the internet to an EC2 instance in the default security group. What is the best approach?
hard📝 Application Q8 of 15
Step-by-Step Solution
Solution:
Step 1: Understand best practices for default security group
Modifying the default security group is not recommended for specific inbound rules.Step 2: Identify correct method to allow HTTP inbound traffic
Creating a new security group with the required inbound rule and assigning it to the instance is best practice.Final Answer:
Create a new security group with the required inbound rule and assign it to the instance. -> Option BQuick Check:
Use new SG for custom inbound rules [OK]
Quick Trick: Use new security groups for custom inbound rules [OK]
Common Mistakes:
- Modifying default security group directly
- Changing outbound rules to affect inbound traffic
- Allowing all inbound traffic instead of specific ports
Master "Security Groups and Network ACLs" in AWS
Want More Practice?
15+ quiz questions · All difficulty levels · Free
Free Signup - Practice All QuestionsMore AWS Quizzes