Firewall PBQs: AWS Certified Advanced Networking - Specialty (ANS-C01)
easyQuestion 1 of 3
A VPC security group attached to an application server in VPC A (10.0.0.0/16) is misconfigured. The server needs to accept HTTPS traffic from the internet for its public API and allow SSH only from the peered VPC B (10.1.0.0/16) where the operations team works. Currently, SSH is open to the world. Fix the security group rules.
Firewall Rules
| # | Direction | Source | Port | Protocol | Action | Order | |
|---|---|---|---|---|---|---|---|
| 1 | inbound | any | 443 | tcp | allow | ||
| 2 | inbound | any | 22 | tcp | allow | ||
| 3 | inbound | any | any | any | deny |
Rules are evaluated top to bottom. Use ▲▼ to reorder.
Progress
0 of 3 rules correctEdit or add rules to configure the firewall, then mark complete
0 of 3 marked complete