Topic 1 Question 282
A company runs a web application that is deployed on Amazon EC2 instances in the private subnet of a VPC. An Application Load Balancer (ALB) that extends across the public subnets directs web traffic to the EC2 instances. The company wants to implement new security measures to restrict inbound traffic from the ALB to the EC2 instances while preventing access from any other source inside or outside the private subnet of the EC2 instances.
Which solution will meet these requirements?
Configure a route in a route table to direct traffic from the internet to the private IP addresses of the EC2 instances.
Configure the security group for the EC2 instances to only allow traffic that comes from the security group for the ALB.
Move the EC2 instances into the public subnet. Give the EC2 instances a set of Elastic IP addresses.
Configure the security group for the ALB to allow any TCP traffic on any port.
ユーザの投票
コメント(8)
- 正解だと思う選択肢: B
B. Configure the security group for the EC2 instances to only allow traffic that comes from the security group for the ALB.
👍 3Bhawesh2023/02/17 - 正解だと思う選択肢: B
configure the security group for the EC2 instances to only allow traffic that comes from the security group for the ALB. This ensures that only the traffic originating from the ALB is allowed access to the EC2 instances in the private subnet, while denying any other traffic from other sources. The other options do not provide a suitable solution to meet the stated requirements.
👍 2kpato872023/02/18 - 正解だと思う選択肢: B
B is the correct answer.
👍 2LuckyAro2023/02/20
シャッフルモード