AWS Certified Advanced Networking - Specialty

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Configure TLS connections to terminate at the ALB that uses a public certificate. Configure AWS Certificate Manager (ACM) certificates for the communication between the ALB and the EC2 instances. Configure an AWS WAF web ACL. Associate the web ACL with the ALB.

To meet the requirements of protecting the application from security issues in web requests and ensuring end-to-end encryption, the solution must involve terminating TLS connections at the Application Load Balancer (ALB) and using AWS Certificate Manager (ACM) certificates for secure communication between the ALB and the EC2 instances. Additionally, configuring an AWS WAF web ACL and associating it with the ALB will provide the necessary protection against web exploits. Option B correctly describes this setup by terminating TLS at the ALB, using ACM certificates for secure backend communication, and associating a WAF web ACL with the ALB for protection. Options A and C suggest using a Network Load Balancer (NLB) which is not necessary for this scenario and complicates the setup without providing additional benefits for web application protection. Option D involves unnecessary steps with third-party certificates and does not streamline the security setup as effectively as Option B.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A company operates a public application that utilizes an Application Load Balancer (ALB) with a target group consisting of Amazon EC2 instances. To safeguard the application from web request security vulnerabilities and ensure end-to-end encryption for all traffic, what solution should be implemented?

Exam-Like

Last updated: February 7, 2026 at 14:03

Configure a Network Load Balancer (NLB) that has a target group of the existing EC2 instances. Configure TLS connections to terminate on the EC2 instances that use a public certificate. Configure an AWS WAF web ACL. Associate the web ACL with the NLB.

25.0%

Configure TLS connections to terminate at the ALB that uses a public certificate. Configure AWS Certificate Manager (ACM) certificates for the communication between the ALB and the EC2 instances. Configure an AWS WAF web ACL. Associate the web ACL with the ALB.

25.0%

Configure a Network Load Balancer (NLB) that has a target group of the existing EC2 instances. Configure TLS connections to terminate at the EC2 instances by creating a TLS listener. Configure self-signed certificates on the EC2 instances for the communication between the NLB and the EC2 instances. Configure an AWS WAF web ACL. Associate the web ACL with the NLB.

25.0%

Powered ByGPT 5.4

Configure a third-party certificate on the EC2 instances for the communication between the ALB and the EC2 instances. Import the third-party certificate into AWS Certificate Manager (ACM). Associate the imported certificate with the ALB. Configure TLS connections to terminate at the ALB. Configure an AWS WAF web ACL. Associate the web ACL with the ALB.