ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS-SysOps All Questions

View all questions & answers for the AWS-SysOps exam
Go to Exam

Exam AWS-SysOps topic 1 question 812 discussion

Exam question from Amazon's AWS-SysOps
Question #: 812
Topic #: 1
[All AWS-SysOps Questions]

Security has identified an IP address that should be explicitly denied for both ingress and egress requests for all services in an Amazon VPC immediately.
Which feature can be used to meet this requirement?

  • A. Host-based firewalls
  • B. NAT Gateway
  • C. Network access control lists
  • D. Security Groups
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by kung07 at May 10, 2020, 10:04 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kung07
Highly Voted 3 years, 1 month ago
C NACL's can be attached to the VPC and can block ingress and egress
upvoted 16 times
...
nicat
Highly Voted 3 years ago
C. Network access control lists
upvoted 6 times
...
e45af42
Most Recent 4 months, 3 weeks ago
Selected Answer: C
A make really no sense... it is obvious easiest way just deny this IP
upvoted 1 times
...
albert_kuo
1 year, 3 months ago
Selected Answer: C
Network access control lists (NACLs) can be used to explicitly deny both ingress and egress requests for specific IP addresses in an Amazon VPC. NACLs act as stateless firewalls that control traffic at the subnet level. They allow you to control both inbound and outbound traffic based on rules that you define.
upvoted 1 times
...
gulu73
1 year, 8 months ago
Selected Answer: C
Answer is C
upvoted 1 times
...
RicardoD
2 years, 12 months ago
C is the answer NACL is stateless and allows for IP blocking
upvoted 2 times
...
arvsrv
3 years ago
Ans. C-->NACL
upvoted 1 times
...
abhishek_m_86
3 years ago
C. Network access control lists Seem correct
upvoted 2 times
...
jackdryan
3 years ago
I'll go with C
upvoted 1 times
...
mrbreeze
3 years ago
C You can do explicit inbound and outbound deny's
upvoted 3 times
...
MrDEVOPS
3 years ago
c :- NACl ~ stateless
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago