An EC2 instance is assigned both the default security group and a custom security group that allows inbound SSH from anywhere. What inbound traffic will the instance accept?

hard📝 Application Q9 of 15

AWS - Security Groups and Network ACLs

ANo inbound traffic is allowed unless both groups allow it.

BOnly inbound traffic allowed by the custom security group.

COnly inbound traffic allowed by the default security group.

DInbound traffic allowed by either the default or the custom security group.

Step-by-Step Solution

Solution:

Step 1: Understand how multiple security groups combine
Inbound traffic is allowed if any attached security group permits it.
Step 2: Analyze the scenario
The custom group allows SSH from anywhere, so inbound SSH is allowed regardless of default group rules.
Final Answer:
Inbound traffic allowed by either the default or the custom security group. -> Option D
Quick Check:
Security groups combine with OR logic for inbound rules [OK]

Quick Trick: Multiple SGs combine with OR logic for inbound traffic [OK]

Common Mistakes:

MISTAKES

Thinking all groups must allow traffic
Assuming default SG overrides custom SG
Believing only one SG applies at a time

Master "Security Groups and Network ACLs" in AWS

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions

More AWS Quizzes

An EC2 instance is assigned both the default security group and a custom security group that allows inbound SSH from anywhere. What inbound traffic will the instance accept?

Step 1: Understand how multiple security groups combine

Step 2: Analyze the scenario

Final Answer:

Quick Check:

Want More Practice?