Multiple Choice
A distributed web application is installed across several EC2 instances in public subnets residing in two Availability Zones. Apache logs show several intermittent brute-force attacks from hundreds of IP addresses at the layer 7 level over the past six months. What would be the BEST way to reduce the potential impact of these attacks in the future?
A) Use custom route tables to prevent malicious traffic from routing to the instances.
B) Update security groups to deny traffic from the originating source IP addresses.
C) Use network ACLs.
D) Install intrusion prevention software (IPS) on each instance.
Correct Answer:
Verified
Correct Answer:
Verified
Q212: An application has been written that publishes
Q213: A company is using AWS Organizations to
Q214: A company has complex connectivity rules governing
Q215: An Amazon S3 bucket is encrypted using
Q216: A company's security information events management (SIEM)
Q218: The Security Engineer implemented a new vault
Q219: A company has Windows Amazon EC2 instances
Q220: The Security Engineer created a new AWS
Q221: A company needs to encrypt all of
Q222: A Security Administrator at a university is