Exam AWS Certified Cloud Practitioner topic 1 question 270 discussion

Shield -- DDoS WAF -- httlps Security group --EC2 Network ACLs --subnet

D. Security group "A security group acts as a virtual firewall for your EC2 instances to control incoming and outgoing traffic. Inbound rules control the incoming traffic to your instance, and outbound rules control the outgoing traffic from your instance. When you launch an instance, you can specify one or more security groups. If you don't specify a security group, Amazon EC2 uses the default security group for the VPC. You can add rules to each security group that allow traffic to or from its associated instances." https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-security-groups.html

A Security Group is associated with an Amazon EC2 instance and acts as a virtual firewall to control inbound and outbound traffic. It acts at the instance level, controlling traffic to and from an individual instance, and allows you to specify which traffic is allowed or denied based on rules you define. Security groups provide a simple way to manage security at the instance level, making it easy to control what traffic is allowed to access the instance and what traffic is not.

D. Security group

agreed

D is the answer.

D. Security group A security group is an AWS service or tool that is associated with an Amazon EC2 instance and acts as a virtual firewall to control inbound and outbound traffic. Security groups enable you to specify which traffic is allowed to reach your instances, based on a set of rules that you define. Security groups act at the instance level, not the subnet level, so each instance in a subnet in your VPC must be associated with a security group. You can add or remove rules from a security group at any time, and you can associate multiple security groups with a single instance. AWS WAF is a web application firewall that helps protect web applications from common web exploits, AWS Shield is a service that provides DDoS protection for web applications hosted on AWS, and Network access control list (ACL) is another service that controls traffic in and out of a VPC, but it acts at the subnet level, not the instance level like security groups.