AWS Certified Advanced Networking - Specialty (#56)

A Network Engineer is troubleshooting a network connectivity issue for an instance within a public subnet that cannot connect to the internet. The first step the Engineer takes is to SSH to the instance via a local bastion within the VPC and runs an


command to inspect the IP addresses configured on the instance. The output is as follows:

The Engineer notices that the command output does not contain a public IP address. In the AWS Management Console, the public subnet has a route to the internet gateway. The instance also has a public IP address associated with it. What should the Engineer do next to troubleshoot this situation?

Configure the public IP on the interface.
Disable source/destination checking for the instance.
Associate an Elastic IP address to the interface.
Evaluate the security groups and the network access control list.