Bird
0
0

What is a key difference between Security Groups and Network ACLs in AWS?

easy📝 Conceptual Q2 of 15
AWS - Security Groups and Network ACLs
What is a key difference between Security Groups and Network ACLs in AWS?
ASecurity Groups are stateful; Network ACLs are stateless
BSecurity Groups operate at subnet level; Network ACLs operate at instance level
CSecurity Groups are stateless; Network ACLs are stateful
DBoth are stateful firewalls
Step-by-Step Solution
Solution:

  1. Step 1: Recall statefulness of Security Groups

    Security Groups are stateful, meaning return traffic is automatically allowed.

  2. Step 2: Recall statefulness of Network ACLs

    Network ACLs are stateless, so return traffic must be explicitly allowed.

  3. Final Answer:

    Security Groups are stateful; Network ACLs are stateless -> Option A

  4. Quick Check:

    Stateful = Security Groups, Stateless = NACLs [OK]
Quick Trick: Stateful remembers return traffic; stateless does not [OK]
Common Mistakes:
MISTAKES
  • Mixing up stateful and stateless properties
  • Assuming both operate at the same network level
  • Thinking NACLs are stateful

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS Account and Billing - Billing dashboard overview - Quiz 13medium AWS CLI - Basic CLI commands (s3, ec2) - Quiz 10hard EC2 Fundamentals - Instance metadata and user data - Quiz 8hard Identity and Access Management - Multi-factor authentication setup - Quiz 1easy Identity and Access Management - Why IAM is foundational - Quiz 12easy Identity and Access Management - Assuming roles for temporary access - Quiz 2easy Identity and Access Management - Least privilege principle - Quiz 8hard S3 Fundamentals - S3 versioning - Quiz 9hard S3 Fundamentals - S3 encryption options - Quiz 1easy S3 Fundamentals - S3 storage classes (Standard, IA, Glacier) - Quiz 4medium