A junior developer has been tasked with setting up access to an Amazon EC2 instance that is running a web application. The developer has created a new security group that allows incoming HTTP traffic from any IP address (0.0.0.0/0) and has kept the default rules for outgoing traffic unchanged. Additionally, a custom Network Access Control List (NACL) associated with the EC2 instance's subnet has been configured to allow incoming HTTP traffic from any IP address (0.0.0.0/0) and has retained the default outbound rules.

Given this setup, which solution would you recommend to ensure that the EC2 instance can both accept and respond to requests from the internet?

Exam-Like

An outbound rule must be added to the Network ACL (NACL) to allow the response to be sent to the client on the ephemeral port range

52.8%

An outbound rule on the security group has to be configured, to allow the response to be sent to the client on the HTTP port

16.7%

The configuration is complete on the EC2 instance for accepting and responding to requests

11.1%

Outbound rules need to be configured both on the security group and on the NACL for sending responses to the Internet Gateway

19.4%

AWS Certified Developer - Associate