Answer-first summary for fast verification
Answer: Enhance protection by deploying AWS Shield Advanced alongside AWS WAF, ensuring the ALB is designated as a protected resource.
The correct answer is B. Deploying AWS Shield Advanced in addition to AWS WAF and adding the ALB as a protected resource is the most effective solution with the least operational overhead. AWS Shield Advanced provides DDoS protection and integrates seamlessly with AWS WAF, offering comprehensive protection against various types of web attacks. This reduces the manual effort required to identify and block malicious IP addresses, as the service is designed to handle such scenarios automatically.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company operates a website hosted on Amazon EC2 instances behind an Application Load Balancer (ALB), which is part of an Auto Scaling group and is protected by an AWS WAF web ACL. The website frequently experiences application-layer attacks causing abrupt spikes in traffic, with each attack originating from unique IP addresses. A solutions architect is tasked with implementing a mitigation strategy that minimizes operational overhead. Which solution is most effective?
A
Set up an Amazon CloudWatch alarm to monitor access patterns, establish a threshold based on IP address activity, and configure the alarm to automatically add offending IP addresses to the web ACL’s deny list.
B
Enhance protection by deploying AWS Shield Advanced alongside AWS WAF, ensuring the ALB is designated as a protected resource.
C
Create an Amazon CloudWatch alarm to track IP address usage, set a threshold for unusual activity, and program the alarm to trigger an AWS Lambda function that inserts a deny rule into the application server’s subnet route table for any suspicious IP addresses.
D
Analyze access logs to identify patterns from attacking IP addresses and utilize an Amazon Route 53 geolocation routing policy to block traffic from the countries associated with these IP addresses.
No comments yet.