nerdexam
ExamsSCS-C02Questions#133
AmazonAmazon

SCS-C02 · Question #133

SCS-C02 Question #133: Real Exam Question with Answer & Explanation

The correct answer is C: Disable the Network Source/Destination check on the security appliance's elastic network. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html

Submitted by asante_acc· Mar 6, 2026

Question

A systems engineer is troubleshooting the connectivity of a test environment that includes a virtual security appliance deployed inline. In addition to using the virtual security appliance, the development team wants to use security groups and network ACLs to accomplish various security requirements in the environment. What configuration is necessary to allow the virtual security appliance to route the traffic?

Options

  • ADisable network ACLs.
  • BConfigure the security appliance's elastic network interface for promiscuous mode.
  • CDisable the Network Source/Destination check on the security appliance's elastic network
  • DPlace the security appliance in the public subnet with the internet gateway.

Explanation

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SCS-C02 PracticeBrowse All SCS-C02 Questions