You have added an instance to three security lists: seclist A, seclistB, and default security
list. You have defined three security rules that reference those security lists as a destination,
apart from the Enable Public SSH Access secrule. Now you want to disable access to this
instance from all internal and external sources over all protocols except SSH.
What are the next three steps you perform?
A.
Set the outbound policy for two security lists to DENY.
B.
Create a new security rule to enable SSH access to the instance.
C.
Add the instance to a new security list.
D.
Disable all three security rules that you have created.
E.
Remove the instance from all three security lists.
F.
Set the inbound policy for all three security lists to DENY.
BCD
C, E and F
B C E.
B,C, E – Reason; By default Inbound is DENY so F is out; You do not disable the list – you delete it so D is out. You cannot achieve anything by just DENY to outbound as strictest List will take precedence – so A is out
A is wrong. no good with the other options.
B. Create a new security rule to enable SSH access to the instance.
C. Add the instance to a new security list.
E. Remove the instance from all three security lists.
D is wrong – you can’t ‘disable’ a security list.
F is wrong. Deny is the default for inbound