AWS Certified Cloud Practitioner
Get started today
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
Your company is planning to host a large ecommerce application on the AWS Cloud. One of their major concerns is Internet attacks such as DDoS attacks. Which of the following services can help mitigate this concern. Choose 2 from below:
Real Exam
Community
RRitesh
A
Cloudfront
B
AWS Shield
C
AWS EC2
D
AWS Config
Explanation:
Explanation:
AWS provides multiple services to help mitigate DDoS attacks:
-
A. CloudFront: Amazon CloudFront is a Content Delivery Network (CDN) that can help mitigate DDoS attacks by:
-
Distributing traffic across multiple edge locations
-
Absorbing and filtering malicious traffic before it reaches your origin servers
-
Providing built-in DDoS protection capabilities
-
-
B. AWS Shield: AWS Shield is a managed DDoS protection service that provides:
-
AWS Shield Standard: Automatic protection for all AWS customers at no additional cost
-
AWS Shield Advanced: Enhanced DDoS protection with additional features and 24/7 access to the AWS DDoS Response Team
-
-
C. AWS EC2: Amazon EC2 instances themselves do not provide DDoS protection and can be vulnerable to attacks without additional protection services.
-
D. AWS Config: This service is for compliance auditing and resource tracking, not DDoS protection.
The AWS documentation emphasizes minimizing attack surface area by using CDNs (like CloudFront) and load balancers, and AWS Shield provides dedicated DDoS protection capabilities.
Comments
Loading comments...