Practice network security vocabulary: WAF, security groups, NACLs, DDoS protection, CIDR blocks, and AWS network security services.
0 / 5 completed
1 / 5
'The WAF ___ the request as potential SQL injection.' Which verb fits?
A WAF (Web Application Firewall) 'blocks' requests that match attack patterns like SQL injection. 'Blocked' is the standard term in WAF logs and dashboards.
2 / 5
'The security group allows inbound ___ only.' Which port number represents HTTPS?
Port 443 is HTTPS. Security groups in AWS are stateful firewalls that control inbound/outbound traffic at the instance level. Allowing only port 443 means only HTTPS traffic is accepted.
3 / 5
What is a NACL in AWS networking?
A NACL (Network Access Control List) is a stateless firewall applied at the subnet level in AWS VPCs. Unlike security groups, NACLs evaluate both allow and deny rules and are stateless.
4 / 5
'We're using AWS ___ for DDoS protection.' Which service name fits?
AWS Shield is the DDoS protection service. Shield Standard is free and automatic; Shield Advanced provides enhanced protection, 24/7 DDoS response team access, and cost protection.
5 / 5
What is a CIDR block in network security rules?
CIDR (Classless Inter-Domain Routing) notation defines IP address ranges. '10.0.0.0/16' covers 65,536 addresses. Security rules use CIDR to allow or deny traffic from specific IP ranges.