In an AWS environment, a company is managing multiple applications within a single VPC. These applications are accessible via an Application Load Balancer associated with an AWS WAF web ACL. The security team has detected numerous port scans originating from a specific range of IP addresses on the internet. To enhance security, a security engineer is tasked with blocking these malicious IP addresses. Which of the following solutions would effectively address this security concern?