🔥 3-day streak
AWS Certified Advanced Networking - Specialty88 / 141
Question 88 of 141

A network engineer configures a web server in a public subnet. The security group allows inbound TCP 443 from 0.0.0.0/0, and all outbound traffic is allowed. However, the subnet's network ACL was hardened with only these rules: inbound rule 100 ALLOW TCP 443 from 0.0.0.0/0, and outbound rule 100 ALLOW TCP 443 to 0.0.0.0/0. All other NACL traffic is denied. Clients report that TLS handshakes to the web server time out. What is the MOST likely cause and correct fix?

Reviewed for accuracy · Report an issueNext question