A company's web application is deployed on Amazon EC2 instances behind a public Application Load Balancer. The application flags malicious requests and uses an AWS Lambda function to add the offending IP addresses to the network ACL to block any further requests for 24 hours. Recently, the application has been receiving more malicious requests, which causes the network ACL to reach its limit of allowed entries. Which action should be taken to block more IP addresses, without compromising the existing security requirements?
A) Update the AWS Lambda function to remove blocked entries from the network ACL after 2 hours.
B) Update the AWS Lambda function to block malicious IPs in security groups rather than the network ACL.
C) Update the AWS Lambda function to block malicious IPs in AWS WAF attached to the Application Load Balancer.
D) Update the AWS Lambda function to add an additional network ACL to the subnets once the limit for the previous ones has been reached.
Correct Answer:
Verified
Q365: Which of the following statements is true
Q366: How many tunnels do you get with
Q367: Your company has a high-availability hybrid solution
Q368: A space exploration company owns a series
Q369: A company is deploying a critical application
Q371: A company has a hybrid architecture with
Q372: A company has applications running in a
Q373: A VPC is deployed with a 10.0.0.0/16
Q374: A department in your company has created
Q375: A company's website is hosted on an
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents