Answer-first summary for fast verification
Answer: A virtual firewall for EC2 instances controlling inbound and outbound traffic.
The correct answer is A, Security groups. Security groups act as virtual firewalls for EC2 instances, controlling both inbound and outbound traffic based on specified rules. This aligns with the principle of least privilege by allowing only necessary traffic to reach the instances, thus enhancing security. The other options do not directly address the principle of least privilege in the context of network traffic control: B, AWS Shield, is for DDoS protection; C, AWS Global Accelerator, is for improving global network performance; and D, AWS Direct Connect, is for establishing a direct network connection to AWS for consistent, low-latency performance.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company is developing a new multi-tier application on Amazon EC2 instances and seeks to enforce the principle of least privilege for network routing and traffic between applications. Which AWS service should be utilized for this purpose?
A
A virtual firewall for EC2 instances controlling inbound and outbound traffic.
B
A service designed for DDoS protection.
C
A service for improving global network reach.
D
A service for establishing a direct network connection to AWS for consistent, low-latency performance.
No comments yet.