Answer-first summary for fast verification
Answer: AWS WAF, offering web application firewall capabilities.
The correct answer is B, AWS WAF. AWS WAF (Web Application Firewall) is designed to protect web applications from various attacks, including SQL injection. It allows users to create custom rules that can inspect incoming web requests and block those that match patterns or signatures associated with SQL injection attacks. This service can be integrated with an Application Load Balancer to protect the website across multiple EC2 instances. The other options are not primarily designed for this purpose: A (Security groups) are for controlling network access at the instance level, C (Network ACLs) operate at the subnet level, and D (AWS Shield) is for DDoS protection.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Which AWS service is suitable for creating custom rules to block SQL injection attacks on a website hosted on EC2 instances behind an Application Load Balancer?
A
Security groups, which act as instance-level firewalls.
B
AWS WAF, offering web application firewall capabilities.
C
Network ACLs, providing subnet-level traffic control.
D
AWS Shield, designed for DDoS protection.