Multiple Choice
A company is hosting multiple applications within a single VPC in its AWS account. The applications are running behind an Application Load Balancer that is associated with an AWS WAF web ACL. The company's security team has identified that multiple port scans are originating from a specific range of IP addresses on the internet. A security engineer needs to deny access from the offending IP addresses. Which solution will meet these requirements?
A) Modify the AWS WAF web ACL with an IP set match rule statement to deny incoming requests from the IP address range.
B) Add a rule to all security groups to deny the incoming requests from the IP address range.
C) Modify the AWS WAF web ACL with a rate-based rule statement to deny incoming requests from the IP address range.
D) Configure the AWS WAF web ACL with regex match conditions. Specify a pattern set to deny the incoming requests based on the match condition.
Correct Answer:
Verified
Correct Answer:
Verified
Q120: A company's AWS CloudTrail logs are all
Q121: A company has an IAM group. All
Q122: A Security Engineer signed in to the
Q123: A security engineer is designing an incident
Q124: An organization is moving non-business-critical applications to
Q126: A Security Engineer creates an Amazon S3
Q127: A security engineer has enabled AWS Security
Q128: A company has a few dozen application
Q129: A company uses Amazon RDS for MySQL
Q130: What is the function of the following