An education company operates a global web application for college students, which is hosted in an Amazon Elastic Container Service (ECS) cluster managed by an Auto Scaling group and is fronted by an Application Load Balancer (ALB). The system administrator has identified a recurring issue where the application's authentication service is overwhelmed by a surge in failed login attempts every week. These attempts are traced back to approximately 500 varying IP addresses. A solutions architect is tasked with devising a solution to effectively mitigate these login attempts without compromising operational efficiency. Which of the following solutions offers the most efficient operational approach to address this issue?

Exam-Like

Implement AWS Firewall Manager to establish a security group and policy that denies access from the identified IP addresses.

11.1%

Configure an AWS WAF web ACL with a rate-based rule to block excessive requests, and attach this web ACL to the ALB.

55.6%

Utilize AWS Firewall Manager to set up a security group and policy that restricts access to only specified CIDR ranges.

0.0%

Deploy an AWS WAF web ACL with an IP set match rule to block specific IP addresses, and integrate this web ACL with the ALB.

33.3%

AWS Certified Solutions Architect - Professional