Which statement below is correct in describing the protection of AWS resources in each subnet?

You have been setting up an Amazon Virtual Private Cloud (Amazon VPC) for your company, including setting up subnets. Security is a concern, and you are not sure which is the best security practice for securing subnets in your VPC.

Which statement below is correct in describing the protection of AWS resources in each subnet?
A .  You can use multiple layers of security, including security groups and network access control lists
(ACL).

B .  You can only use access control lists (ACL).
C .  You don’t need any security in subnets.
D .  You can use multiple layers of security, including security groups, network access control lists (ACL) and CloudHS

Answer: A

Explanation:

A subnet is a range of IP addresses in your VPC. You can launch AWS resources into a subnet that you select. Use a public subnet for resources that must be connected to the Internet, and a private subnet for resources that won’t be connected to the Internet.

To protect the AWS resources in each subnet, you can use multiple layers of security, including security groups and network access control lists (ACL).

Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Introduction.html

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments