Topic 1 Question 318
A SysOps administrator launches an Amazon EC2 instance in a private subnet of a VPC. When the SysOps administrator attempts a curl command from the command line of the EC2 instance, the SysOps administrator cannot connect to https:www.example.com.
What should the SysOps administrator do to resolve this issue?
Ensure that there is an outbound security group for port 443 to 0.0.0.0/0.
Ensure that there is an inbound security group for port 443 from 0.0.0.0/0.
Ensure that there is an outbound network ACL for ephemeral ports 1024-66535 to 0.0.0.0/0.
Ensure that there is an outbound network ACL for port 80 to 0.0.0.0/0.
ユーザの投票
コメント(2)
- 正解だと思う選択肢: A
Inbound security group rules control the inbound traffic to an EC2 instance. Since the SysOps administrator is attempting a curl command from the EC2 instance to access a website on port 443 (HTTPS), an inbound security group rule needs to be added to allow incoming traffic on port 443. Option B suggests adding an inbound security group rule for port 443 from 0.0.0.0/0, which allows traffic from any IP address to access the EC2 instance on port 443. This will enable the SysOps administrator to establish an outbound connection from the EC2 instance to www.example.com on port 443 and access the website successfully. Therefore, by adding an inbound security group rule for port 443 from 0.0.0.0/0, the SysOps administrator can resolve the issue and establish a connection to https://www.example.com.
👍 1Shoppe2023/06/01 Isn't this A, Outbound?
👍 1Sheepbk2023/06/01
シャッフルモード