Multiple Choice
An application is currently secured using network access control lists and security groups. Web servers are located in public subnets behind an Application Load Balancer (ALB) ; application servers are located in private subnets. How can edge security be enhanced to safeguard the Amazon EC2 instances against attack? (Choose two.)
A) Configure the application's EC2 instances to use NAT gateways for all inbound traffic.
B) Move the web servers to private subnets without public IP addresses.
C) Configure AWS WAF to provide DDoS attack protection for the ALB.
D) Require all inbound network traffic to route through a bastion host in the private subnet.
E) Require all inbound and outbound network traffic to route through an AWS Direct Connect connection.
Correct Answer:
Verified
Correct Answer:
Verified
Q55: A Development team has asked for help
Q56: An Application team has requested a new
Q57: A company deployed an Amazon EC2 instance
Q58: A company is developing an ecommerce application.
Q59: An organization operates a web application that
Q61: A company has deployed a custom DNS
Q62: A Security Engineer has been asked to
Q63: A company's on-premises networks are connected to
Q64: A company uses an Amazon S3 bucket
Q65: A company is using AWS Organizations to