MemberAugust 22, 2023 at 7:41 am
A company has several EC2 instances in its VPC that are publicly accessible from the Internet. A Network Engineer issued a ping command from his home computer with an IP address of
203.0.113.12to an EC2 instance with a private IP address of
172.31.16.139and a public address of
184.108.40.206. However, there was no ping response. The VPC Flow Logs have the following records:
This does not make sense as you cannot ping a private IP accross the internet without a VPN. It will not even get to the ingress VPC. Either change the IP to ping the public ip of 220.127.116.11 or mention a vpn is involved.
AdministratorAugust 29, 2023 at 4:30 pm
Take note that an EC2 instance can have both a private and public IP address. It is already mentioned on the first statement of the scenario that the EC2 instances are publicly accessible from the Internet which is why the EC2 instance has both a private and a public IP address.
If this is just a private EC2 instance with just a private IP address then yes, it won’t be accessible but the scenario is quite clear that the EC2 instance is a public one with both a private and public IP address.
Let us know if you need further assistance. The Tutorials Dojo team is dedicated to help you pass your AWS exam on your first try!
Jon Bonso @ Tutorials Dojo
Log in to reply.