Multiple Choice
A company is developing a web application that runs on Amazon EC2 instances in an Auto Scaling group behind a public-facing Application Load Balancer (ALB) . Only users from a specific country are allowed to access the application. The company needs the ability to log the access requests that have been blocked. The solution should require the least possible maintenance. Which solution meets these requirements?
A) Create an IPSet containing a list of IP ranges that belong to the specified country. Create an AWS WAF web ACL. Configure a rule to block any requests that do not originate from an IP range in the IPSet. Associate the rule with the web ACL. Associate the web ACL with the ALB.
B) Create an AWS WAF web ACL. Configure a rule to block any requests that do not originate from the specified country. Associate the rule with the web ACL. Associate the web ACL with the ALB.
C) Configure AWS Shield to block any requests that do not originate from the specified country. Associate AWS Shield with the ALB.
D) Create a security group rule that allows ports 80 and 443 from IP ranges that belong to the specified country. Associate the security group with the ALB.
Correct Answer:
Verified
Correct Answer:
Verified
Q426: An AWS account owner has setup multiple
Q427: A company has a legacy application running
Q428: During an audit, a security team discovered
Q429: A company is currently using AWS CodeCommit
Q430: A company is moving a business-critical application
Q432: A large financial company is deploying applications
Q433: <img src="https://d2lvgg3v3hfg70.cloudfront.net/C1091/.jpg" alt=" Refer to the
Q434: A Solutions Architect is designing a network
Q435: Your company previously configured a heavily used,
Q436: A company has a three-tier application running