https://docs.aws.amazon.com/vpc/latest/userguide/vpc-network-acls.html
Network ACLs are stateless, which means that responses to allowed inbound traffic are subject to the rules for outbound traffic (and vice versa).
Rules are evaluated starting with the lowest numbered rule. As soon as a rule matches traffic, it's applied regardless of any higher-numbered rule that might contradict it.
Options A&D . NACL can be understood as the firewall or protection for the subnet. Security group can be understood as a firewall to protect EC2 instances. These are stateless, meaning any change applied to an incoming rule isn't automatically applied to an outgoing rule per https://www.knowledgehut.com/tutorials/aws/nacl-vs-security-groups
A. They are stateless: Network ACLs in AWS are stateless, meaning they do not keep track of the state of a connection. Each incoming and outgoing packet is evaluated independently based on the rules defined in the ACL.
D. They process rules in order, starting with the lowest numbered rule when deciding whether to allow traffic: Network ACLs evaluate rules sequentially and process them in order, starting with the lowest numbered rule. Once a matching rule is found, processing stops, and the decision to allow or deny traffic is made based on that rule. No further rules are evaluated.
A. They are stateless. Most Voted
D. They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic. Most Voted
The correct answers are A and D.
A) They are stateless: Network ACLs (Access Control Lists) in AWS are stateless. They evaluate each network packet independently and don't track the state of the traffic flow. Therefore, any changes to the traffic flow require explicit rules for each direction of traffic.
D) They process rules in order, starting with the lowest numbered rule, when deciding whether to allow traffic: AWS Network ACLs process the rules in sequential order starting with the lowest numbered rule to the highest numbered rule to decide whether to allow traffic or not
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
30Miles
Highly Voted 2 years, 7 months agoFlex1
Highly Voted 2 years, 7 months agosonaljain
Most Recent 4 months agoLeen8199
1 year agoman5484
1 year, 9 months agoSTOPITALREADY
1 year, 9 months agothiagonhs
1 year, 10 months agoESAJRR
1 year, 10 months agoESAJRR
1 year, 10 months agoWarsame21
1 year, 10 months agoGorioDeCavite
1 year, 10 months agohuanghaiyao
1 year, 11 months agoGuru4Cloud
2 years agoelidiojose
2 years, 1 month agokumaran1000001
2 years, 1 month agoAmycert
2 years, 1 month agodebabrata6983
2 years, 3 months ago