A cloud administrator is reviewing repeated attempts to connect to a sensitive service. The current security group configuration allows open access from internet sources on the port. Which measure reduces the risk of unauthorized connections and preserves valid traffic?
Eliminate filtering on the port to simplify administration
Limit connections to a known set of addresses on the port
Add a broad outbound entry that logs destination requests
Remove the inbound rule from the current configuration
Allowing inbound traffic from unverified sources can lead to attacks on vulnerable services. Removing the rule breaks necessary connections. A broad outbound rule does not protect the internal system from incoming threats. Restricting inbound requests to known addresses retains useful access while preventing suspicious networks from connecting.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a security group in cloud computing?
Open an interactive chat with Bash
How does limiting access to a known set of addresses enhance security?
Open an interactive chat with Bash
Why is removing the inbound rule not a good option in this scenario?