AWS Network Access Control Lists (NACLs)

Question 1

What is the primary purpose of AWS Network Access Control Lists (NACLs)?

A) Managing IAM permissions
B) Controlling traffic at the subnet level
C) Distributing data to multiple regions
D) Load balancing incoming traffic

Answer 1

Answer: B) Controlling traffic at the subnet level

Explanation: NACLs are used to control inbound and outbound traffic at the subnet level in AWS VPCs.

Question 2

How do AWS NACLs differ from AWS Security Groups?

A) NACLs are stateful, while Security Groups are stateless.
B) NACLs are used for routing traffic, while Security Groups are used for access control.
C) NACLs are only applicable to EC2 instances, while Security Groups apply to all AWS resources.
D) NACLs have a default “Deny All” rule, while Security Groups have a default “Allow All” rule.

Answer 2

Answer: B) NACLs are used for routing traffic, while Security Groups are used for access control.

Explanation: NACLs control traffic based on subnet-level rules and are primarily used for routing, while Security Groups control access to individual instances based on security rules.