0
0
AWScloud~5 mins

Default security group behavior in AWS - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is a default security group in AWS?
A default security group is automatically created for each VPC. It controls inbound and outbound traffic for instances without a custom security group.
Click to reveal answer
beginner
What inbound traffic rules does the default security group have?
It allows inbound traffic from instances assigned to the same security group, meaning instances can communicate with each other by default.
Click to reveal answer
beginner
What outbound traffic rules does the default security group have?
It allows all outbound traffic to any destination by default, so instances can send traffic anywhere unless restricted.
Click to reveal answer
intermediate
Can you delete the default security group in a VPC?
No, the default security group cannot be deleted. It always exists to ensure basic network security.
Click to reveal answer
intermediate
Why is it important to understand the default security group behavior?
Because it affects how instances communicate by default and helps avoid unintended open access or blocked traffic.
Click to reveal answer
What does the default security group allow for inbound traffic?
ATraffic from instances assigned to the same security group
BAll inbound traffic from the internet
CNo inbound traffic by default
DOnly SSH traffic
Can you delete the default security group in an AWS VPC?
AYes, anytime
BNo, it cannot be deleted
COnly via AWS Support
DOnly if no instances use it
What is the default outbound rule of the default security group?
ANo outbound traffic allowed
BOutbound traffic allowed only to the same security group
CAll outbound traffic allowed
DOutbound traffic allowed only on port 80
Why might you want to modify the default security group?
ATo restrict traffic between instances for security
BTo allow all inbound traffic from the internet
CTo delete it and create a new one
DTo disable outbound traffic permanently
Which statement about the default security group is true?
AIt blocks all traffic by default
BIt allows inbound traffic from any IP address
CIt is deleted when you create a new VPC
DIt allows inbound traffic only from instances in the same group
Explain the default inbound and outbound rules of the AWS default security group and why they matter.
Think about how instances talk to each other by default.
You got /3 concepts.
    Describe what happens if you do not assign a custom security group to an EC2 instance in a VPC.
    Consider the default network access the instance gets.
    You got /4 concepts.