Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Amazon Exam CLF-C02 Topic 4 Question 36 Discussion

Actual exam question for Amazon's CLF-C02 exam
Question #: 36
Topic #: 4
[All CLF-C02 Questions]

A company notices suspicious network activity against an application that is running on a fleet of Amazon EC2 instances. The suspicious activity is coming from a single IP address.

Which AWS service should the company use to block access from this IP address?

Show Suggested Answer Hide Answer
Suggested Answer: D

AWS WAF Overview:

AWS Web Application Firewall (WAF) allows users to create rules to block or allow traffic based on IP addresses, request patterns, and other conditions.

It is ideal for blocking traffic from a specific IP address.

Why AWS WAF Meets the Requirement:

The company can create a WAF rule to block traffic from the malicious IP address.

WAF integrates with services like Amazon CloudFront, Application Load Balancer, and API Gateway.

Why Other Options Are Incorrect:

A . AWS Shield: Protects against DDoS attacks but does not allow custom IP blocking.

B . AWS Config: Monitors resource configurations but does not block IPs.

C . Amazon GuardDuty: Detects threats but does not block traffic directly.


AWS WAF Documentation

Contribute your Thoughts:

Buddy
1 months ago
Hmm, I'd say D) AWS WAF. It's like having a virtual bodyguard for your web app, keeping the bad guys at bay.
upvoted 0 times
Bernardine
6 days ago
That's true, but I think D) AWS WAF would be more effective in this situation.
upvoted 0 times
...
Pete
8 days ago
But what about using A) AWS Shield? It's specifically designed to protect against DDoS attacks.
upvoted 0 times
...
Laura
14 days ago
I agree, D) AWS WAF is a good choice to block access from that suspicious IP address.
upvoted 0 times
...
...
Pearlene
2 months ago
I bet the answer is D) AWS WAF. It's like having a bouncer at the door, kicking out the troublemakers before they can cause any real damage.
upvoted 0 times
Cristy
1 months ago
Yeah, AWS WAF can help block that suspicious IP address.
upvoted 0 times
...
Phuong
1 months ago
I think you're right, D) AWS WAF is the way to go.
upvoted 0 times
...
Billi
1 months ago
Yeah, AWS WAF acts like a bouncer for your application, keeping out unwanted traffic from that single IP address.
upvoted 0 times
...
Santos
1 months ago
I think you're right, AWS WAF is the way to go. It can help block those suspicious activities.
upvoted 0 times
...
...
Dalene
2 months ago
I'm not sure, but I think AWS Shield could also be a good option to protect against DDoS attacks.
upvoted 0 times
...
Tresa
2 months ago
I agree with Marnie. AWS WAF is specifically designed to protect web applications from common web exploits.
upvoted 0 times
...
Valene
2 months ago
C) Amazon GuardDuty can detect and respond to suspicious activity, but AWS WAF is the right choice for actively blocking the IP address.
upvoted 0 times
Paola
29 days ago
Yes, GuardDuty can detect it, but WAF is the best option for actively blocking it.
upvoted 0 times
...
Edda
1 months ago
But wouldn't Amazon GuardDuty be better for detecting and responding to the activity?
upvoted 0 times
...
Chaya
2 months ago
I think we should use AWS WAF to block access from that suspicious IP address.
upvoted 0 times
...
...
Marnie
2 months ago
I think the company should use AWS WAF to block access from the suspicious IP address.
upvoted 0 times
...
Kristel
2 months ago
D) AWS WAF is the way to go. It's designed specifically for blocking suspicious IP addresses and protecting web applications.
upvoted 0 times
Sabine
2 months ago
Let's set up AWS WAF to block that suspicious activity.
upvoted 0 times
...
Sean
2 months ago
Agreed, AWS WAF is the best option for protecting web applications.
upvoted 0 times
...
Jennifer
2 months ago
We should use AWS WAF to block access from that IP address.
upvoted 0 times
...
...

Save Cancel