Skip to content

Commit

Permalink
aws Q55 (Ebazhanov#1445)
Browse files Browse the repository at this point in the history 
The outbound rules for the http 80 must be allowed also.
  • Loading branch information
@gudata
gudata authored Apr 15, 2021
1 parent 29b4605 commit fe6b1fc
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion aws/aws-quiz.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -392,7 +392,7 @@ aws ec2 associate-address --instance-id i-8b953 --allocation-id eipalloc-02d021a
![image](https://user-images.githubusercontent.com/8637045/112515574-c077e780-8d6c-11eb-96a6-11f27a0547cf.png)

- [ ] The outbound rules block UDP port 53, so the server will not be able to resolve any DNS lookups.
- [ ] The outbound rules do not allow for HTTP traffic to leave the instance, so inbound HTTP requests will fail because the clients will never get HTTP responses.
- [x] The outbound rules do not allow for HTTP traffic to leave the instance, so inbound HTTP requests will fail because the clients will never get HTTP responses.
- [ ] The incoming SSH port should not be open to the public. Limit SSH to a single IP address or IP range of controlled addressed, or use a VPN to access the VPC for this server.
- [ ] The all incoming TCP ports are exposed, which overrides the HTTP and SSH rules and exposes all TCP ports to the public internet.

0 comments on commit fe6b1fc

Please sign in to comment.