Answer-first summary for fast verification
Answer: Configure an Amazon CloudWatch alarm to monitor Shield Advanced metrics for the occurrence of an active DDoS event.
The correct answer is D. AWS Shield Advanced is specifically designed to provide enhanced protection against DDoS (Distributed Denial of Service) attacks. By configuring an Amazon CloudWatch alarm to monitor Shield Advanced metrics, you can effectively detect and receive alerts for any ongoing DDoS attacks against your AWS account. While the other services mentioned have their own security roles, AWS Shield Advanced is the most appropriate tool for DDoS protection and alerting.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company has implemented Amazon Macie, AWS Firewall Manager, Amazon Inspector, and AWS Shield Advanced within their AWS environment. They are seeking a solution to be alerted in the event of a DDoS attack targeting their AWS account. Which of the following solutions would effectively fulfill this requirement?
A
Utilize Macie to identify an ongoing DDoS event and set up Amazon CloudWatch alarms to react to Macie's findings.
B
Employ Amazon Inspector to assess resources and trigger Amazon CloudWatch alarms for resources that are susceptible to DDoS attacks.
C
Establish an Amazon CloudWatch alarm that tracks Firewall Manager metrics for the presence of an active DDoS event.
D
Configure an Amazon CloudWatch alarm to monitor Shield Advanced metrics for the occurrence of an active DDoS event.
No comments yet.