Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon Exam CLF-C02 Topic 4 Question 36 Discussion

Actual exam question for Amazon's CLF-C02 exam
Question #: 36
Topic #: 4
[All CLF-C02 Questions]

A company notices suspicious network activity against an application that is running on a fleet of Amazon EC2 instances. The suspicious activity is coming from a single IP address.

Which AWS service should the company use to block access from this IP address?

Show Suggested Answer Hide Answer
Suggested Answer: D

AWS WAF Overview:

AWS Web Application Firewall (WAF) allows users to create rules to block or allow traffic based on IP addresses, request patterns, and other conditions.

It is ideal for blocking traffic from a specific IP address.

Why AWS WAF Meets the Requirement:

The company can create a WAF rule to block traffic from the malicious IP address.

WAF integrates with services like Amazon CloudFront, Application Load Balancer, and API Gateway.

Why Other Options Are Incorrect:

A . AWS Shield: Protects against DDoS attacks but does not allow custom IP blocking.

B . AWS Config: Monitors resource configurations but does not block IPs.

C . Amazon GuardDuty: Detects threats but does not block traffic directly.


AWS WAF Documentation

by Jesusita at Jan 09, 2025, 05:05 PM

Limited Time Offer

25%

Off

Get Premium CLF-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Kristel
2 days ago
D) AWS WAF is the way to go. It's designed specifically for blocking suspicious IP addresses and protecting web applications.
upvoted 0 times
...

Save Cancel