AWS Certified Cloud Practitioner

Ultimate access to all questions.

Deep dive into the quiz with AI chat providers.

We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.

Which AWS service provides managed DDoS protection?

Real Exam

Community

RRitesh

Last updated: December 2, 2025 at 18:03

AWS Firewall Manager

AWS Shield

Amazon GuardDuty

Amazon Inspector

Explanation:

Explanation

AWS Shield is the correct answer because it is AWS's managed Distributed Denial of Service (DDoS) protection service.

AWS Shield:
- Provides managed DDoS protection
- Comes in two tiers:
  - AWS Shield Standard: Free, automatic protection for all AWS customers
  - AWS Shield Advanced: Paid service with additional features like 24/7 DDoS response team, cost protection, and advanced attack mitigation
Why other options are incorrect:
- AWS Firewall Manager: A security management service that allows you to centrally configure and manage firewall rules across your AWS accounts and applications
- Amazon GuardDuty: A threat detection service that continuously monitors for malicious activity and unauthorized behavior
- Amazon Inspector: An automated security assessment service that helps improve the security and compliance of applications deployed on AWS

Always-on detection and automatic inline mitigations
Integration with Amazon CloudFront, Amazon Route 53, and Elastic Load Balancing
Real-time visibility into attacks via AWS WAF, Amazon CloudWatch, and AWS Management Console
Protection against infrastructure layer (Layer 3/4) and application layer (Layer 7) attacks

AWS Shield is specifically designed to protect AWS applications from DDoS attacks, making it the appropriate choice for managed DDoS protection.

Powered ByGemini-3 Flash

Loading comments...