Podcast
Questions and Answers
Which AWS service can be used to capture the IP traffic of network interfaces in a VPC?
Which AWS service can be used to capture the IP traffic of network interfaces in a VPC?
- CloudTrail
- NACLs (correct)
- Security groups
- Route 53
What is the difference between NACLs and security groups in terms of rule application?
What is the difference between NACLs and security groups in terms of rule application?
- NACLs apply rules automatically to instances in a subnet, while security groups have to be manually applied to instances. (correct)
- NACLs have separate incoming and outgoing rules, while security groups have combined rules.
- NACLs support allow and deny rules, while security groups only support allow rules.
- NACLs are stateful, while security groups are stateless.
What is the purpose of CloudTrail in AWS?
What is the purpose of CloudTrail in AWS?
- Monitor account activity in AWS. (correct)
- Capture DNS queries.
- Monitor security operations in the cloud.
- Capture IP traffic of network interfaces in a VPC.
What type of rules do NACLs support?
What type of rules do NACLs support?
What is the order in which NACL rules are applied?
What is the order in which NACL rules are applied?
What is the purpose of VPC flow logs in AWS?
What is the purpose of VPC flow logs in AWS?
Are NACLs stateful or stateless?
Are NACLs stateful or stateless?
Can NACL rules be automatically applied to outgoing traffic when an incoming rule is changed?
Can NACL rules be automatically applied to outgoing traffic when an incoming rule is changed?
What is the purpose of Route 53 in AWS?
What is the purpose of Route 53 in AWS?
Is security operations shifting to the cloud?
Is security operations shifting to the cloud?
Flashcards are hidden until you start studying