You are currently hosting multiple applications in a VPC and have logged numerous port scans coming in from a specific IP address block. Your security team has requested that all access from the offending IP address block be denied for the next 24 hours. Which of the following is the best method to quickly and temporarily deny access from the specified IP address block?
A) Create an AD policy to modify Windows Firewall settings on all hosts in the VPC to deny access from the IP address block
B) Modify the Network ACLs associated with all public subnets in the VPC to deny access from the IP address block
C) Add a rule to all of the VPC 5 Security Groups to deny access from the IP address block
D) Modify the Windows Firewall settings on all Amazon Machine Images (AMIs) that your organization uses in that VPC to deny access from the IP address block
Correct Answer:
Verified
Q14: When preparing for a compliance assessment of
Q15: Which of the following requires a custom
Q16: When assessing an organization s use of
Q17: You have been asked to leverage Amazon
Q18: You are creating an Auto Scaling group
Q20: You are managing a legacy application Inside
Q21: A user has created a web application
Q22: When an EC2 EBS-backed (EBS root) instance
Q23: A user is trying to aggregate all
Q24: A media company produces new video files
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents