AWS Certified Cloud Practitioner — Question 625

Which AWS service or feature is associated with a subnet in a VPC and is used to control inbound and outbound traffic?

Answer options

• A. Amazon Inspector
• B. Network ACLs
• C. AWS Shield
• D. VPC Flow Logs

Correct answer: B

Explanation

Network ACLs (NACLs) act as a stateless firewall at the subnet level to control inbound and outbound traffic. Amazon Inspector is a vulnerability assessment service and AWS Shield provides DDoS protection, while VPC Flow Logs are used for monitoring network traffic rather than controlling it.