Examice

Exam SOA-C02 All QuestionsBrowse all questions from this exam

Question 360

A developer creates a web application that runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The instances are in an Auto Scaling group. The developer reviews the deployment and notices some suspicious traffic to the application. The traffic is malicious and is coming from a single public IP address. A SysOps administrator must block the public IP address.

Which solution will meet this requirement?

Create a security group rule to deny all inbound traffic from the suspicious IP address. Associate the security group with the ALB.

Implement Amazon Detective to monitor traffic and to block malicious activity from the internet. Configure Detective to integrate with the ALB.

Implement AWS Resource Access Manager (AWS RAM) to manage traffic rules and to block malicious activity from the internet. Associate AWS RAM with the ALB.

Add the malicious IP address to an IP set in AWS WAF. Create a web ACL. Include an IP set rule with the action set to BLOCK. Associate the web ACL with the ALB.

Correct Answer: D

To block a specific IP address, the use of AWS WAF (Web Application Firewall) is the most appropriate solution. By adding the malicious IP address to an IP set in AWS WAF, creating a web ACL, and including an IP set rule with the action set to BLOCK, you can effectively prevent traffic from that IP address from reaching the Application Load Balancer (ALB). AWS WAF is designed to manage and block specific types of traffic based on rules, including IP addresses, making it suited for this scenario.

Discussion

rdiazOption: D

D waf. “A” cannot be because security groups do not have deny rules.

[Removed]

D. Add the malicious IP address to an IP set in AWS WAF. Create a web ACL. Include an IP set rule with the action set to BLOCK. Associate the web ACL with the ALB.

WarzaOption: D

D. meets ALL requirements for the question

Pete987Option: D

S: WAF for blocking IP address

james2033Option: D

a single malicious public IP address --> AWS WAF (Web Application Firewall) --> D.

joshnortOption: D

D: Add the malicious IP address to an IP set in AWS WAF. Create a web ACL. Include an IP set rule with the action set to BLOCK. Associate the web ACL with the ALB. AWS Web Application Firewall (WAF) allows you to create rules to control which traffic is allowed or blocked to your web applications. By creating an IP set containing the malicious IP address and associating it with a web ACL with a BLOCK action, you effectively block the IP address from reaching the ALB. https://docs.aws.amazon.com/waf/latest/developerguide/what-is-aws-waf.html (A) is wrong because Security Groups don't have Deny Rules.

jas26saysOption: A

Ans is A

jas26says

Sorry, it´s D

Zotarix

Security Groups only allows traffic to your resources, you can't block traffic using Security Groups. https://docs.aws.amazon.com/vpc/latest/userguide/security-groups.html