AWS - Security Groups and Network ACLs
You configured a Network ACL to allow inbound HTTP (port 80) traffic but forgot to add the corresponding outbound rule. What issue will you observe?
You configured a Network ACL to allow inbound HTTP (port 80) traffic but forgot to add the corresponding outbound rule. What issue will you observe?
medium📝 Debug Q6 of 15
Step-by-Step Solution
Solution:
Step 1: Understand stateless nature of Network ACLs
Network ACLs require explicit inbound and outbound rules because they are stateless.Step 2: Analyze missing outbound rule impact
Inbound HTTP packets arrive, but response packets outbound are blocked without outbound rule.Final Answer:
Inbound HTTP traffic will be allowed, but responses will be blocked -> Option DQuick Check:
Stateless NACLs need both inbound and outbound rules [OK]
Quick Trick: NACLs need both inbound and outbound rules for two-way traffic [OK]
Common Mistakes:
- Assuming inbound rule alone is enough
- Confusing stateful Security Groups with stateless NACLs
- Ignoring response traffic requirements
Master "Security Groups and Network ACLs" in AWS
Want More Practice?
15+ quiz questions · All difficulty levels · Free
Free Signup - Practice All QuestionsMore AWS Quizzes