A company is developing a web application hosted on Amazon EC2 instances within an Auto Scaling group, fronted by a public-facing Application Load Balancer (ALB). The application is intended to be accessed exclusively by users from a specific country. The company requires a solution that not only restricts access to only these users but also logs any access attempts that are blocked. The solution should be as maintenance-free as possible. Which of the following solutions meets these requirements?

Exam-Like

Create an IPSet in AWS WAF containing the IP ranges of the specified country. Configure an AWS WAF web ACL with a rule to block requests not originating from the IPSet. Associate this rule with the web ACL and then with the ALB.

25.0%

Set up an AWS WAF web ACL with a rule to block requests not originating from the specified country. Associate this rule with the web ACL and then with the ALB.

75.0%

Configure AWS Shield to block requests not originating from the specified country and associate AWS Shield with the ALB.

0.0%

Create a security group rule allowing access on ports 80 and 443 from the IP ranges of the specified country and associate this security group with the ALB.

0.0%

AWS Certified Solutions Architect - Professional

Get started today

Comments