AWS Certified Cloud Practitioner — Question 652

Which AWS network services or features allow CIDR block notation when providing an IP address range? (Choose two.)

Answer options

• A. Security groups
• B. Amazon Machine Image (AMI)
• C. Network access control list (network ACL)
• D. AWS Budgets
• E. Amazon Elastic Block Store (Amazon EBS)

Correct answer: A, C

Explanation

Security groups and Network Access Control Lists (network ACLs) are VPC-level networking features that use CIDR block notation to define IP address ranges for firewalls and traffic filtering. Amazon Machine Images (AMIs), AWS Budgets, and Amazon Elastic Block Store (Amazon EBS) are compute, financial, and storage services respectively, and do not utilize IP addresses or CIDR notation.