A company is configuring three Amazon EC2 instances with each instance in a separate Availability Zone. The EC2 instances will be used as transparent proxies for outbound internet traffic for ports 80 and 443 so the proxies can block traffic to certain internet destinations as required by the company's security policies. A Security Engineer completed the following: Set up the proxy software on the EC2 instances. Modified the route tables on the private subnets to use the proxy EC2 instances as the default route. Created a security group rule opening inbound port 80 and 443 TCP protocols on the proxy EC2 instance security group. However, the proxy EC2 instances are not successfully forwarding traffic to the internet. What should the Security Engineer do to make the proxy EC2 instances route traffic to the internet?
A) Put all the proxy EC2 instances in a cluster placement group.
B) Disable source and destination checks on the proxy EC2 instances.
C) Open all inbound ports on the proxy EC2 instance security group.
D) Change the VPC's DHCP domain-name-servers options set to the IP addresses of proxy EC2 instances.
Correct Answer:
Verified
Q214: A company website runs on Amazon EC2
Q215: A company is running an application on
Q216: A company is collecting AWS CloudTrail log
Q217: The Development team receives an error message
Q218: A company has a web-based application using
Q220: A company needs to migrate several applications
Q221: During a manual review of system logs
Q222: An application running on Amazon EC2 instances
Q223: A company requires that SSH commands used
Q224: A large company wants its Compliance team
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents