This answer, to me, is worded in a confusing way.
A DevOps Engineer reported a problem accessing his EC2 instance with a private IP address of 172.31.8.11 from his corporate laptop. The EC2 instance is hosting a web application which works well but he is still experiencing an issue establishing a connection to manage the instance.
As the SysOps Administrator, which of the following options is the most suitable solution in this scenario based on the VPC flow log entries below?
2 123456789010 eni-abc123de 188.8.131.52 172.31.8.11 49761 3389 6 20 4249 1418530010 1418530070 REJECT OK
Allow incoming RDP traffic in the security group of the EC2 instance including the inbound and outbound rules in the Network ACL.
If it were reworded to something like:
Allow incoming RDP traffic in both the security group of the EC2 instance and the Network ACL inbound and outbound ruleset in the VPC.
I feel that it’d be more clear that the VPC is where NACLs are configured. Thanks!