A cloud administrator is configuring a security group for a new production web server in the cloud environment. The server needs to be accessible from the internet to serve HTTP and HTTPS traffic. To maintain a strong security posture, which of the following rules should the administrator implement to control the ingress and egress traffic effectively?
Block all inbound traffic to ports 80 and 443 to prevent potential attacks and restrict outbound traffic to internal network addresses only.
Allow all inbound and outbound traffic to ensure uninterrupted web server operation and connectivity.
Allow inbound on port 80 and 443 from any source. Allow outbound on ports 80, 443, and 25 to any destination.
Allow inbound on port 80 and 443 from any source. Restrict outbound to ports 80, 443, and 53 to known update and DNS service addresses.
In a cloud environment, it is imperative to limit access to only what is necessary for the operation of a service. Opening HTTP and HTTPS ports to the internet (port 80 and port 443, respectively) allows web traffic to reach the web server. Meanwhile, limiting outbound traffic to known ports associated with necessary update services and DNS (for domain name resolution) ensures that the server can maintain its operations and updates while reducing the potential for malicious communication if compromised. Port 25 is commonly used for SMTP, which is not a typical requirement for a web server to perform updates or DNS queries; leaving it unrestricted could be a security risk.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are ingress and egress traffic in a cloud environment?
Open an interactive chat with Bash
What is the significance of restricting outbound traffic to specific ports?
Open an interactive chat with Bash
Why is port 25 considered a potential security risk for web servers?