AWS Certified SysOps Administrator SOA-C01 – Question495

You are setting up security groups for both incoming traffic and outgoing traffic in your VPC net-work on the AWS CLI. Which of the following AWS CLI commands would you use for adding one or more incoming traffic rules to a security group?

A.
authorize-security-group-egress
B. authorize-security-group-ingress
C. Grant-EC2SecurityGroupOutgress
D. Get-EC2SecurityGroup

Correct Answer: B

Explanation:

Explanation: When setting up security groups for incoming traffic in your VPC network, to add one or more in-gress (incoming traffic) rules to a security group. authorize-security-group-ingress (AWS CLI). ec2-authorize (Amazon EC2 CLI). Grant-EC2SecurityGroupIngress (AWS Tools for Windows Pow-erShell) In computer networking, ingress filtering is a technique used to make sure that incoming packets are actually from the networks that they claim to be from. In computer networking, egress filtering is the practice of monitoring and potentially restricting the flow of information outbound from one network to another. Typically, it is information from a private TCP/IP computer network to the Internet that is controlled. Reference:
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-network-se…