Practice free →
HomeAWS Securitycloudcomputingscsinfraiam › Which AWS networking primitive is STATELESS, att…

Which AWS networking primitive is STATELESS, attached at the subnet level, supports both allow + explicit deny rules, and acts as a defence-in-depth complement to security groups?

ANetwork ACLs
BSecurity Groups
CAmazon Route 53
DAmazon CloudFront
Answer & Solution
Correct answer: A. Network ACLs
NACLs are stateless subnet-level allow+deny (per SCS-C02 §3.2). SGs are stateful + allow-only; the others are unrelated.
Solve this in the app — AWS Security practice & 24k+ MCQs →
Related questions