A distributed web application is installed across several EC2 instances in public subnets residing in two Availability Zones. Apache logs show several intermittent brute-force attacks from hundreds of IP addresses at the layer 7 level over the past six months. What would be the BEST way to reduce the potential impact of these attacks in the future?
A) Use custom route tables to prevent malicious traffic from routing to the instances.
B) Update security groups to deny traffic from the originating source IP addresses.
C) Use network ACLs.
D) Install intrusion prevention software (IPS) on each instance.
Correct Answer:
Verified
Q114: A company has a forensic logging use
Q115: A Security Engineer has been asked to
Q116: A company has multiple VPCs in their
Q117: A Developer's laptop was stolen. The laptop
Q118: For compliance reasons, an organization limits the
Q120: A company recently experienced a DDoS attack
Q121: An application uses Amazon Cognito to manage
Q122: A company had one of its Amazon
Q123: A Security Engineer has discovered that, although
Q124: A Security Engineer is setting up an
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents