Correct answers
- "Assign an SSL certificate to the Load Balancer" : This ensures our Load Balancer can expose
an HTTPS endpoint.
"Open up port 80 & port 443" : This ensures our Load Balancer will allow both the
HTTP (80) and HTTPS (443) protocol for incoming connections
"Configure your EC2 instances to redirect HTTP traffic to HTTPS": this ensures traffic
originating from HTTP onto the Load Balancer are forced a redirect to HTTPS by the EC2
instances before being correctly served, thus ensuring the traffic served is fully
encrypted.
Incorrect Answers
"Only open up port 80" - Wouldn't allow HTTPS traffic (port 443)
"Only open up port 443" - Wouldn't allow HTTP traffic (port 80)
"Configure your EC2 instances to redirect HTTPS traffic to HTTP" - Would force HTTP traffic,
instead of HTTPS