Why must NACL rules explicitly allow both inbound and outbound traffic for a protocol to work correctly?

hard📝 Conceptual Q10 of 15

AWS - Security Groups and Network ACLs

ABecause NACLs only filter outbound traffic, inbound is always allowed.

BBecause NACLs automatically allow return traffic, so only inbound rules are needed.

CBecause NACLs are stateless and do not track connection states, requiring explicit rules for both directions.

DBecause NACLs use security groups to manage return traffic.

Step-by-Step Solution

Solution:

Step 1: Understand stateless filtering
NACLs treat each packet independently without remembering connection state.
Step 2: Explain rule necessity
Both inbound and outbound rules must explicitly allow traffic for communication to succeed.
Final Answer:
Because NACLs are stateless and do not track connection states, requiring explicit rules for both directions. -> Option C
Quick Check:
Stateless means explicit inbound and outbound rules needed [OK]

Quick Trick: Stateless means explicit rules both ways [OK]

Common Mistakes:

MISTAKES

Master "Security Groups and Network ACLs" in AWS

9 interactive learning modes - each teaches the same concept differently

Want More Practice?

15+ quiz questions · All difficulty levels · Free

More AWS Quizzes