Home › Forums › AWS › AWS Certified SysOps Administrator Associate › Possible confusing question SysOps Set 1
-
Possible confusing question SysOps Set 1
Carlo-TutorialsDojo updated 2 years, 4 months ago 2 Members · 2 Posts -
This answer, to me, is worded in a confusing way.
A DevOps Engineer reported a problem accessing his EC2 instance with a private IP address of 172.31.8.11 from his corporate laptop. The EC2 instance is hosting a web application which works well but he is still experiencing an issue establishing a connection to manage the instance.
As the SysOps Administrator, which of the following options is the most suitable solution in this scenario based on the VPC flow log entries below?
2 123456789010 eni-abc123de 110.217.100.70 172.31.8.11 49761 3389 6 20 4249 1418530010 1418530070 REJECT OK
Answer:
Allow incoming RDP traffic in the security group of the EC2 instance including the inbound and outbound rules in the Network ACL.
If it were reworded to something like:
Allow incoming RDP traffic in both the security group of the EC2 instance and the Network ACL inbound and outbound ruleset in the VPC.
I feel that it’d be more clear that the VPC is where NACLs are configured. Thanks!
- This discussion was modified 2 years, 4 months ago by Jeremiah Curtis.
-
Hello Jeremiah,
Thank you for your suggestion. Your feedback is greatly appreciated.
We’ll review this item and see what we can do to improve it.
Regards,
Carlo @ Tutorials Dojo
Log in to reply.