AWS Certified Advanced Networking - Specialty
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
A company utilizes AWS Network Firewall to secure outgoing traffic across multiple VPCs within the same AWS account. Each VPC includes Amazon EC2 instances, tagged with the application they host, and these instances are part of Auto Scaling groups.
To ensure the Network Firewall stateful rule group stays current as EC2 instances are launched or terminated by Auto Scaling, which solution requires the LEAST implementation and administrative effort?
A
Create a network ACL for each application. Reference the network ACL in the stateful rule group.
B
Create a prefix list for each application. Reference the prefix list in the stateful rule group.
C
Create an AWS Lambda function that queries the EC2 instance tags for each application name and then updates the stateful rule group with the IP address of each instance.
D
Create a resource group for each application name. Reference the Amazon Resource Name (ARN) for the resource groups in the stateful rule group.