Multiple Choice
A company is hosting a web application on Amazon EC2 instances behind an Application Load Balancer (ALB) . The application has become the target of a DoS attack. Application logging shows that requests are coming from small number of client IP addresses, but the addresses change regularly. The company needs to block the malicious traffic with a solution that requires the least amount of ongoing effort. Which solution meets these requirements?
A) Create an AWS WAF rate-based rule, and attach it to the ALB.
B) Update the security group that is attached to the ALB to block the attacking IP addresses.
C) Update the ALB subnet's network ACL to block the attacking client IP addresses.
D) Create a AWS WAF rate-based rule, and attach it to the security group of the EC2 instances.
Correct Answer:
Verified
Correct Answer:
Verified
Q173: The Security Engineer is given the following
Q174: A Security Engineer is setting up an
Q175: A Security Engineer must design a system
Q176: An organization has a multi-petabyte workload that
Q177: A company is developing a highly resilient
Q179: Two Amazon EC2 instances in different subnets
Q180: An application has been built with Amazon
Q181: An Application Developer is using an AWS
Q182: Example.com hosts its internal document repository on
Q183: Unapproved changes were previously made to a