AWS Certified Cloud Practitioner (CLF-C02) — Question 249

Which AWS service or component allows inbound traffic from the internet to access a VPC?

Answer options

• A. Internet gateway
• B. NAT gateway
• C. AWS WAF
• D. VPC peering

Correct answer: A

Explanation

The correct answer is A, Internet gateway, as it is specifically designed to allow inbound traffic from the internet to a VPC. The NAT gateway, on the other hand, is used for outbound internet access from private subnets but does not facilitate direct inbound traffic. AWS WAF is a web application firewall used to protect web applications, and VPC peering is a connection between VPCs that enables traffic to flow between them, not from the internet.