Answer-first summary for fast verification
Answer: Create an AWS WAF rate-based rule, and attach it to the ALB.
The best solution to block the malicious traffic with minimal ongoing effort is to create an AWS WAF rate-based rule and attach it to the ALB. AWS WAF (Web Application Firewall) provides protection for web applications against common web exploits and allows you to control the traffic that reaches your application. A rate-based rule can detect and mitigate against DoS attacks by tracking the rate of requests from any individual IP address and blocking traffic that exceeds a configured threshold. This solution is more scalable and requires less manual intervention compared to updating security groups or network ACLs, which would need continuous monitoring and updating due to the changing nature of the attacking IP addresses.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company is operating a web application on Amazon EC2 instances, which are protected by an Application Load Balancer (ALB). Recently, the application has been subjected to a DoS attack where the logs indicate a consistent pattern of requests originating from a limited number of client IP addresses that frequently change. To mitigate this threat with minimal ongoing management, which strategy should the company implement to effectively block the malicious traffic?
A
Create an AWS WAF rate-based rule, and attach it to the ALB.
B
Update the security group associated with the ALB to block the attacking IP addresses.
C
Modify the network ACL of the ALB's subnet to deny access to the attacking client IP addresses.
D
Establish an AWS WAF rate-based rule, and integrate it with the security group of the EC2 instances.
No comments yet.