AWS Certified Solutions Architect - Professional

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Create a Network Load Balancer (NLB). Associate the NLB with one static IP address in multiple Availability Zones. Create an ALB-type target group for the NLB and add the existing ALB. Add the NLB IP addresses to the firewall appliance. Update the clients to connect to the NLB.

The correct answer is B. The company is using ALB features and must retain them. However, the on-premises firewall requires a static IP address, and an ALB cannot have a static IP. By creating a Network Load Balancer (NLB) with a static IP address in multiple Availability Zones and associating it with an ALB-type target group that includes the existing ALB, the solution meets all requirements. This setup allows clients to connect through the NLB while retaining path-based routing and other ALB features. Finally, the static IP addresses of the NLB can be added to the firewall appliance, ensuring seamless connectivity.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A telecommunications company is operating an application on AWS, utilizing an AWS Direct Connect link between their on-premises data center and AWS. The application is hosted on Amazon EC2 instances across multiple Availability Zones and is managed by an internal Application Load Balancer (ALB). Clients access the application via HTTPS from the on-premises network, with TLS termination occurring at the ALB. The ALB employs path-based routing to direct requests to various target groups based on the URL path. The company plans to implement an on-premises firewall appliance that uses an IP-based allow list. A solutions architect needs to devise a strategy to ensure uninterrupted access to the AWS application for the clients. Which solution fulfills these requirements?

Exam-Like

Last updated: December 31, 2025 at 14:03

Configure the existing ALB to use static IP addresses. Assign IP addresses in multiple Availability Zones to the ALB. Add the ALB IP addresses to the firewall appliance.

0.0%

Create a Network Load Balancer (NLB). Associate the NLB with one static IP address in multiple Availability Zones. Create an ALB-type target group for the NLB and add the existing ALB. Add the NLB IP addresses to the firewall appliance. Update the clients to connect to the NLB.

41.7%

Create a Network Load Balancer (NLB). Associate the NLB with one static IP address in multiple Availability Zones. Add the existing target groups to the NLB. Update the clients to connect to the NLB. Delete the ALB. Add the NLB IP addresses to the firewall appliance.

33.3%

Create a Gateway Load Balancer (GWLB). Assign static IP addresses to the GWLB in multiple Availability Zones. Create an ALB-type target group for the GWLB and add the existing ALB. Add the GWLB IP addresses to the firewall appliance. Update the clients to connect to the GWLB.