You want to allow inbound HTTPS (port 443) traffic only from a specific security group. How does the stateful nature of security groups affect the return traffic?

hard📝 Application Q8 of 15

AWS - Security Groups and Network ACLs

AReturn traffic is blocked unless inbound rules allow ephemeral ports

BYou must add outbound rules to allow return traffic

CReturn traffic is allowed automatically without extra outbound rules

DYou must create a separate security group for return traffic

Step-by-Step Solution

Solution:

Step 1: Understand inbound rule from another security group
Inbound HTTPS allowed from a specific security group means traffic is allowed from instances in that group.
Step 2: Apply stateful behavior for return traffic
Return traffic is automatically allowed without needing outbound rules.
Final Answer:
Return traffic is allowed automatically without extra outbound rules -> Option C
Quick Check:
Stateful = return traffic auto-allowed [OK]

Quick Trick: Inbound from SG means return traffic auto-allowed [OK]

Common Mistakes:

MISTAKES

Adding unnecessary outbound rules
Confusing inbound rules from IP vs security group
Thinking ephemeral ports must be opened manually

Master "Security Groups and Network ACLs" in AWS

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions

More AWS Quizzes

You want to allow inbound HTTPS (port 443) traffic only from a specific security group. How does the stateful nature of security groups affect the return traffic?

Step 1: Understand inbound rule from another security group

Step 2: Apply stateful behavior for return traffic

Final Answer:

Quick Check:

Want More Practice?