Nacl — AWS Cloud Practitioner (CLF-C02) Practice Questions

Network Access Control Lists (NACLs) are stateless firewalls that apply to an entire subnet within a VPC, evaluating inbound and outbound traffic independently using numbered rules. Because NACLs are stateless, you must explicitly create both inbound and outbound rules to permit a full request-response flow. The CLF-C02 exam contrasts NACLs with security groups, and candidates must know that NACLs process rules in ascending order and stop at the first match. They provide a coarser, subnet-level control layer that complements the instance-level granularity of security groups.

Free questions on nacl