An application is currently secured using network access control lists and security groups. Web servers are located in public subnets behind an Application Load Balancer (ALB) ; application servers are located in private subnets. How can edge security be enhanced to safeguard the Amazon EC2 instances against attack? (Choose two.)
A) Configure the application's EC2 instances to use NAT gateways for all inbound traffic.
B) Move the web servers to private subnets without public IP addresses.
C) Configure AWS WAF to provide DDoS attack protection for the ALB.
D) Require all inbound network traffic to route through a bastion host in the private subnet.
E) Require all inbound and outbound network traffic to route through an AWS Direct Connect connection.
Correct Answer:
Verified
Q12: A company will store sensitive documents in
Q13: A Security Engineer launches two Amazon EC2
Q14: A Systems Engineer has been tasked with
Q15: A company wants to control access to
Q16: A security team is responsible for reviewing
Q18: A Security Engineer must enforce the use
Q19: A company requires that IP packet data
Q20: A company has complex connectivity rules governing
Q21: An application outputs logs to a text
Q22: A company has deployed a custom DNS
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents