Your company has a set of EC2 Instances that are placed behind an ELB.
Some of the applications hosted on these instances communicate via a legacy protocol.
There is a security mandate that all traffics between the client and the EC2 Instances need to be secure.
How would you accomplish this?
Click on the arrows to vote for the correct answer
A. B. C. D.Answer - D.
Since there are applications that work on legacy protocols, you need to ensure that the ELB can be used at the network layer as well.
Hence you should choose the Classic ELB.
Since the traffic needs to be secure till the EC2 Instances, the SSL termination should occur on the EC2 Instances.
Options A and C are invalid because the Application Load Balancer does not support SSL pass-through.
You need to use a Classic Load balancer.
Option B is incorrect since the encryption is required until the EC2 Instance.
For more information on HTTPS listeners for classic load balancers, please refer to the below URL.
https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-https-load-balancers.htmlThe best option for securing traffic between the clients and the EC2 instances that communicate via a legacy protocol behind an ELB is to use an Application Load Balancer (ALB) and terminate the SSL connection at the EC2 instances (Option C).
Explanation:
Therefore, option C is the best choice for securing traffic between clients and EC2 instances that communicate via a legacy protocol behind an ELB.