C. Network ACLs
Network Access Control Lists (Network ACLs) are a feature of Amazon VPC that act as a firewall for controlling traffic in and out of a subnet. Network ACLs enable companies to create rules that allow or deny traffic to their Amazon EC2 instances based on IP protocol, port, and source or destination IP address range. Network ACLs are stateless, meaning that return traffic must be explicitly allowed by rules.
AWS WAF is a web application firewall that helps protect web applications from common web exploits.
AWS Shield is a service that provides DDoS protection for applications running on AWS.
Security Groups are another feature of Amazon VPC that act as a firewall for controlling traffic to Amazon EC2 instances. Security groups are stateful, meaning that they automatically allow return traffic.
The question is asking to apply rule for EC2.
The "subnet" word is just a distractor.
In Security Groups rules, you can mention IP address/Subnet.
So, trick question, but the right answer is D.
"apply security rules to a subnet"
So, trick question, be carefull.
follow the answer.
https://docs.aws.amazon.com/managedservices/latest/userguide/restrict-nacl.html
C. Network ACLs
"Security groups are tied to an instance whereas Network ACLs are tied to the subnet. Network ACLs are applicable at the subnet level, so any instance in the subnet with an associated NACL will follow the rules of NACL. That’s not the case with security groups, security groups have to be assigned explicitly to the instance. This means any instances within the subnet group get the rule applied. With a Security group, you have to manually assign a security group to the instances."
https://medium.com/awesome-cloud/aws-difference-between-security-groups-and-network-acls-adc632ea29ae
Be careful, the question is to apply security rules for EC2 instances. And this rules should be applied to a subnet (to allow or deny traffic on a subnet basis).
Therefore, the correct answer is D : Security Groups
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
NotMeAnyWay
Highly Voted 2 years, 4 months agoDiego_Farani
Most Recent 1 year, 8 months agoDiego_Farani
1 year, 8 months agoPranava_GCP
1 year, 10 months agosaypark
2 years, 3 months agoaxelovich
2 years agoptoul74
2 years, 3 months agoDiego_Farani
1 year, 8 months agoSaif93
2 years, 4 months agoErnShm
2 years, 4 months ago