Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon Exam CLF-C02 Topic 4 Question 36 Discussion

Actual exam question for Amazon's CLF-C02 exam
Question #: 36
Topic #: 4
[All CLF-C02 Questions]

A company notices suspicious network activity against an application that is running on a fleet of Amazon EC2 instances. The suspicious activity is coming from a single IP address.

Which AWS service should the company use to block access from this IP address?

Show Suggested Answer Hide Answer
Suggested Answer: D

AWS WAF Overview:

AWS Web Application Firewall (WAF) allows users to create rules to block or allow traffic based on IP addresses, request patterns, and other conditions.

It is ideal for blocking traffic from a specific IP address.

Why AWS WAF Meets the Requirement:

The company can create a WAF rule to block traffic from the malicious IP address.

WAF integrates with services like Amazon CloudFront, Application Load Balancer, and API Gateway.

Why Other Options Are Incorrect:

A . AWS Shield: Protects against DDoS attacks but does not allow custom IP blocking.

B . AWS Config: Monitors resource configurations but does not block IPs.

C . Amazon GuardDuty: Detects threats but does not block traffic directly.


AWS WAF Documentation

by Jesusita at Jan 09, 2025, 05:05 PM

Limited Time Offer

25%

Off

Get Premium CLF-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Buddy
15 days ago
Hmm, I'd say D) AWS WAF. It's like having a virtual bodyguard for your web app, keeping the bad guys at bay.
upvoted 0 times
...
Pearlene
23 days ago
I bet the answer is D) AWS WAF. It's like having a bouncer at the door, kicking out the troublemakers before they can cause any real damage.
upvoted 0 times
Cristy
7 days ago
Yeah, AWS WAF can help block that suspicious IP address.
upvoted 0 times
...
Phuong
9 days ago
I think you're right, D) AWS WAF is the way to go.
upvoted 0 times
...
Billi
11 days ago
Yeah, AWS WAF acts like a bouncer for your application, keeping out unwanted traffic from that single IP address.
upvoted 0 times
...
Santos
19 days ago
I think you're right, AWS WAF is the way to go. It can help block those suspicious activities.
upvoted 0 times
...
...
Dalene
25 days ago
I'm not sure, but I think AWS Shield could also be a good option to protect against DDoS attacks.
upvoted 0 times
...
Tresa
27 days ago
I agree with Marnie. AWS WAF is specifically designed to protect web applications from common web exploits.
upvoted 0 times
...
Valene
1 months ago
C) Amazon GuardDuty can detect and respond to suspicious activity, but AWS WAF is the right choice for actively blocking the IP address.
upvoted 0 times
Paola
5 days ago
Yes, GuardDuty can detect it, but WAF is the best option for actively blocking it.
upvoted 0 times
...
Edda
17 days ago
But wouldn't Amazon GuardDuty be better for detecting and responding to the activity?
upvoted 0 times
...
Chaya
21 days ago
I think we should use AWS WAF to block access from that suspicious IP address.
upvoted 0 times
...
...
Marnie
1 months ago
I think the company should use AWS WAF to block access from the suspicious IP address.
upvoted 0 times
...
Kristel
2 months ago
D) AWS WAF is the way to go. It's designed specifically for blocking suspicious IP addresses and protecting web applications.
upvoted 0 times
Sabine
24 days ago
Let's set up AWS WAF to block that suspicious activity.
upvoted 0 times
...
Sean
1 months ago
Agreed, AWS WAF is the best option for protecting web applications.
upvoted 0 times
...
Jennifer
1 months ago
We should use AWS WAF to block access from that IP address.
upvoted 0 times
...
...

Save Cancel