AWS DevOps Engineer Professional DOP-C01 – Question450 - AWS DevOps Engineer Professional DOP-C01

What option below is the geographic limit of an EC2 security group?

A. Security groups are global.
B. They are confined to Placement Groups.
C. They are confined to Regions.
D. They are confined to Availability Zones.

Correct Answer: C

Explanation:

Explanation:
A security group is tied to a region and can be assigned only to instances in the same region.
You can’t enable an instance to communicate with an instance outside its region using security group rules.
Traffic from an instance in another region is seen as WAN bandwidth.
Reference:
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/resources.html