A web company is looking to implement an intrusion detection and prevention system into their deployed VPC. This platform should have the ability to scale to thousands of instances running inside of the VPC. How should they architect their solution to achieve these goals?
A) Configure an instance with monitoring software and the elastic network interface (ENI) set to promiscuous mode packet sniffing to see an traffic across the VPC.
B) Create a second VPC and route all traffic from the primary application VPC through the second VPC where the scalable virtualized IDS/IPS platform resides.
C) Configure servers running in the VPC using the host-based 'route' commands to send all traffic through the platform to a scalable virtualized IDS/IPS.
D) Configure each host with an agent that collects all network traffic and sends that traffic to the IDS/IPS platform for inspection.
Correct Answer:
Verified
Q262: The following are AWS Storage services? (Choose
Q263: Your startup wants to implement an order
Q264: A Solutions Architect must migrate an existing
Q265: A company runs its containerized batch jobs
Q266: Your firm has uploaded a large amount
Q268: You currently operate a web application. In
Q269: A company is running a large application
Q270: You are the new IT architect in
Q271: A company runs an IoT platform on
Q272: An auction website enables users to bid
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents