AWS Solutions Architect Associate Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Study for the AWS Solutions Architect Associate Test with our engaging quizzes. Utilize flashcards and multiple-choice questions, each with hints and explanations to enhance your understanding. Get exam-ready today!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

What could prevent two EC2 instances in different subnets from pinging each other?

No route in subnet’s routing table
Inbound ICMP rules in security groups
Permissions in IAM roles
Outbound rules in NACL

The correct answer is: No route in subnet’s routing table

The reason for the correct choice relates to how routing works within AWS's VPC architecture. If there is no route in the subnet's routing table, communication between the two EC2 instances will not be possible. Each subnet has a routing table that dictates where traffic can be sent. If the routes do not allow traffic to go from one subnet to another, then there's no path for the packets to traverse, preventing the instances from establishing a connection. While inbound ICMP rules in security groups could restrict the ability to ping if they are not set to allow ICMP traffic, a missing route in the routing table would take precedence as the fundamental reason for the inability to communicate. Additionally, IAM roles relate to permissions within AWS and do not directly influence networking capabilities at the level of EC2 instance connectivity. As for outbound rules in Network ACLs, though they can also restrict traffic, the absence of a route is the primary barrier that would prevent communication altogether regardless of the permissions set at the security group or NACL levels. Therefore, the absence of a route in the subnet's routing table is the definitive reason that would prevent two EC2 instances in different subnets from pinging each other.