Bird
0
0

Which AWS CLI command correctly adds an inbound rule to allow TCP traffic on port 443 from any IP to a Network ACL?

easy📝 Configuration Q3 of 15
AWS - Security Groups and Network ACLs
Which AWS CLI command correctly adds an inbound rule to allow TCP traffic on port 443 from any IP to a Network ACL?
Aaws ec2 create-network-acl-entry --network-acl-id acl-12345678 --ingress --rule-number 100 --protocol tcp --port-range From=443,To=443 --cidr-block 0.0.0.0/0 --rule-action allow
Baws ec2 authorize-security-group-ingress --group-id sg-12345678 --protocol tcp --port 443 --cidr 0.0.0.0/0
Caws ec2 create-network-acl-entry --network-acl-id acl-12345678 --egress --rule-number 100 --protocol tcp --port-range From=443,To=443 --cidr-block 0.0.0.0/0 --rule-action allow
Daws ec2 modify-network-acl-entry --network-acl-id acl-12345678 --rule-number 100 --protocol tcp --port 443 --cidr-block 0.0.0.0/0 --rule-action allow
Step-by-Step Solution
Solution:

  1. Step 1: Identify correct command for Network ACL inbound rule

    The command to add an inbound rule is 'create-network-acl-entry' with '--ingress' flag.

  2. Step 2: Verify parameters

    Rule number, protocol TCP, port range 443, CIDR 0.0.0.0/0, and action allow are correctly specified in aws ec2 create-network-acl-entry --network-acl-id acl-12345678 --ingress --rule-number 100 --protocol tcp --port-range From=443,To=443 --cidr-block 0.0.0.0/0 --rule-action allow.

  3. Step 3: Eliminate incorrect options

    aws ec2 authorize-security-group-ingress --group-id sg-12345678 --protocol tcp --port 443 --cidr 0.0.0.0/0 is for Security Groups, C uses '--egress' (outbound), and D uses a non-existent command 'modify-network-acl-entry'.

  4. Final Answer:

    Option A -> Option A

  5. Quick Check:

    Use 'create-network-acl-entry' with '--ingress' for inbound rules [OK]
Quick Trick: Use create-network-acl-entry with --ingress for inbound ACL rules [OK]
Common Mistakes:
MISTAKES
  • Using Security Group commands instead of Network ACL commands
  • Confusing ingress and egress flags
  • Using non-existent CLI commands

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS CLI - Why CLI matters for automation - Quiz 2easy AWS CLI - Installing AWS CLI - Quiz 15hard AWS CLI - Configuring credentials - Quiz 2easy Cloud Computing Fundamentals - Cloud service models (IaaS, PaaS, SaaS) - Quiz 7medium Cloud Computing Fundamentals - Edge locations and CloudFront overview - Quiz 10hard Cloud Computing Fundamentals - Cloud service models (IaaS, PaaS, SaaS) - Quiz 6medium EC2 Fundamentals - EC2 pricing models (on-demand, reserved, spot) - Quiz 14medium Identity and Access Management - Managed vs inline policies - Quiz 3easy Identity and Access Management - Assuming roles for temporary access - Quiz 8hard Security Groups and Network ACLs - Security groups vs NACLs decision - Quiz 10hard