You are the Systems Administrator for a company. They have set up an EC2 Instance in a VPC (CIDR 10.0.0.0/16) hosting a Web-based application. You need to modify the security rules so that users from around the world can access the application. Also, you need to be able to SSH into the instance from your workstation with an IP of 20.90.6.7. Which of the following Security rules would you put in place? Choose 2 answers from the options given below.

Answer options:

A.Add an Inbound Security Rule of port(80) and Source IP as 10.0.0.0/16
B.Add an Inbound Security Rule of port(80) and Source IP as 0.0.0.0/0
C.Add an Inbound Security Rule of port(22) and Source IP as 0.0.0.0/0
D.Add an Inbound Security Rule of port(22) and Source IP as 20.90.6.7/32

Correct Answers: B and D
Such as example is also mentioned in the AWS Documentation.
Since users from all over the world need access to the web application, you need to ensure that the source IP range needs to be 0.0.0.0/0 and not 10.0.0.0/16.
And if you want to SSH into the instance from an IP, it needs to be 20.90.6.7/32 and not the internet.
For more information on using Network Security, please refer to the below URL-
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-network-security.html