AWS Certified Solutions Architect – Professional — Question 94

Which of the following statements is correct about the number of security groups and rules applicable for an EC2-Classic instance and an EC2-VPC network interface?

Answer options

• A. In EC2-Classic, you can associate an instance with up to 5 security groups and add up to 50 rules to a security group. In EC2-VPC, you can associate a network interface with up to 500 security groups and add up to 100 rules to a security group.
• B. In EC2-Classic, you can associate an instance with up to 500 security groups and add up to 50 rules to a security group. In EC2-VPC, you can associate a network interface with up to 5 security groups and add up to 100 rules to a security group.
• C. In EC2-Classic, you can associate an instance with up to 5 security groups and add up to 100 rules to a security group. In EC2-VPC, you can associate a network interface with up to 500 security groups and add up to 50 rules to a security group.
• D. In EC2-Classic, you can associate an instance with up to 500 security groups and add up to 100 rules to a security group. In EC2-VPC, you can associate a network interface with up to 5 security groups and add up to 50 rules to a security group.

Correct answer: D

Explanation

Option D is correct because it accurately states that in EC2-Classic, an instance can be associated with up to 500 security groups and can have 100 rules per group, while in EC2-VPC, a network interface can be associated with 5 security groups and have 50 rules per group. The other options incorrectly mix the limits between EC2-Classic and EC2-VPC, leading to incorrect associations or rule counts.