You have added an instance to three security lists: seclistA, seclistB, and default security list. You have defined
three security rules that reference those security lists as a destination, apart from the EnablePublicSSHAccess
secrule. Now you want to disable access to this instance from all internal and external sources over all
protocols except SSH.What are the next three steps you perform?
A.
Set the outbound policy for two security lists to DENY.
B.
Create a new security rule to enable SSH access to the instance.
C.
Add the instance to a new security list.
D.
Disable all three security rules that you have created.
E.
Remove the instance from all three security lists.
F.
Set the inbound policy for all three security lists to DENY.
BCD
C, E and F
BCE
B C E
let me know correct answer for this ?
I think the catch for this question is that assume there are other instances added to the existing security list, so you need remove the instance from existing security list, add the specific isntance to new list and add security rule for it.
Also remove the instance from the 3 security lists defined at the beginning.
Hence ===> BCE
A is wrong – outbound is not the issue
D is wrong – you cant ‘Disable’ secLists.
F is wrong – the inbound policy is already DENY; it’s the default
So – BCE: New SecList, Add to new SecList, remove from others.