Multiple Choice
A company has deployed a custom DNS server in AWS. The Security Engineer wants to ensure that Amazon EC2 instances cannot use the Amazon-provided DNS. How can the Security Engineer block access to the Amazon-provided DNS in the VPC?
A) Deny access to the Amazon DNS IP within all security groups.
B) Add a rule to all network access control lists that deny access to the Amazon DNS IP.
C) Add a route to all route tables that black holes traffic to the Amazon DNS IP.
D) Disable DNS resolution within the VPC configuration.
Correct Answer:
Verified
Correct Answer:
Verified
Q56: An Application team has requested a new
Q57: A company deployed an Amazon EC2 instance
Q58: A company is developing an ecommerce application.
Q59: An organization operates a web application that
Q60: An application is currently secured using network
Q62: A Security Engineer has been asked to
Q63: A company's on-premises networks are connected to
Q64: A company uses an Amazon S3 bucket
Q65: A company is using AWS Organizations to
Q66: An application is running on an Amazon