You have launched an Amazon Elastic Compute Cloud (EC2) instance into a public subnet with a primary
private IP address assigned, an Internet gateway is attached to the VPC, and the public route table is
configured to send all Internet-based traffic to the Internet gateway. The instance security group is set to allow
all outbound traffic but cannot access the internet. Why is the Internet unreachable from this instance?
A.
The instance does not have a public IP address.
B.
The internet gateway security group must allow all outbound traffic.
C.
The instance security group must allow all inbound traffic.
D.
The instance “Source/Destination check” property must be enabled.
Explanation:
Ensure that instances in your subnet have public IP addresses or Elastic IP addresses. https://
docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Internet_Gateway.html
A
Ans C. If instance is launched public Ip will be given by default.
Also by default for all security groups outbound is anywhere, we have to configure inbound only. So C
A is correct.
http://jayendrapatil.com/tag/nat/
A
I don’t know what Venu is saying but the answer is A. Security group is configured as stated in the question so nothing to do there.
This is one of those questions where it’s best to rule out answers and see what’s left. None of the other answers make any sense.