Question: You have four front-end web servers behind a load balancer, which use NFS to access another EC2 instance that resizes and stores images for the front-end application. What security group policies should be assigned to these servers?

1. Assign Elastic IPs to all of the instances and create a group that allows all traffic to pass between each of the five
2. Front-end web servers should allow HTTPS. Assign another group to all of the instances that allows all traffic to pass between instances using that group.
3. Create a security group that allows inbound NFS, HTTP, and HTTPS traffic from all IP addresses. Apply this group to all of the servers.
4. Create a security group that allows inbound HTTP and HTTPS traffic from all IP addresses and apply this to the web servers. Create a second security group for the NFS filestore that allows outbound NFS traffic to the private IP range of the front-end web

Answer: The correct answer of the above question is Option B:Front-end web servers should allow HTTPS. Assign another group to all of the instances that allows all traffic to pass between instances using that group.