GIAC Security Leadership Certification (GSLC) — Question 13

What can be used to segment a virtual private cloud into smaller network segments?

Answer options

• A. Network access control lists
• B. Availability zones
• C. CIDR subnets
• D. Internet gateways

Correct answer: C

Explanation

CIDR subnets are specifically designed to create smaller, more manageable segments within a virtual private cloud, allowing for better organization and control of IP address allocation. Network access control lists and internet gateways serve different purposes related to security and connectivity, while availability zones are focused on redundancy and availability rather than network segmentation.