ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C02 topic 1 question 99 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C02
Question #: 99
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C02 Questions]

A company's web application is running on Amazon EC2 instances behind an Application Load Balancer. The company recently changed its policy, which now requires the application to be accessed from one specific country only.
Which configuration will meet this requirement?

  • A. Configure the security group for the EC2 instances.
  • B. Configure the security group on the Application Load Balancer.
  • C. Configure AWS WAF on the Application Load Balancer in a VPC.
  • D. Configure the network ACL for the subnet that contains the EC2 instances.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by josebormo at Aug. 10, 2020, 9:20 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
josebormo
Highly Voted 3 years, 7 months ago
I agree it is C, see https://aws.amazon.com/es/blogs/security/how-to-use-aws-waf-to-filter-incoming-traffic-from-embargoed-countries/
upvoted 45 times
aguy9
3 years, 7 months ago
I agree, answer is C
upvoted 6 times
...
...
Paitan
Highly Voted 3 years, 7 months ago
WAF with ALB is the right option.
upvoted 21 times
...
1e10f28
Most Recent 11 months, 2 weeks ago
Why option B is wrong?
upvoted 1 times
...
Uzbekistan
1 year, 2 months ago
Selected Answer: C
C. Configure AWS WAF on the Application Load Balancer in a VPC. By configuring AWS WAF on the Application Load Balancer, you can create rules to allow or deny requests based on the geographic location of the client IP address. This will effectively restrict access to the application to users from the specified country only.
upvoted 1 times
...
seryum
2 years, 2 months ago
Selected Answer: C
Absolutely I agree answer is C
upvoted 1 times
...
queen101
2 years, 9 months ago
cccccccc
upvoted 1 times
...
Janan
2 years, 9 months ago
Selected Answer: A
ALB with WAF -A SG cannot have deny rules.
upvoted 1 times
...
amabdelmongy
2 years, 9 months ago
Selected Answer: C
C WAF with ALB is the right option.
upvoted 1 times
...
naveenagurjara
2 years, 10 months ago
Selected Answer: C
SG cannot have DENY rules in them and EC2 is behind LB
upvoted 1 times
...
Shakilibm
3 years, 2 months ago
It should be C
upvoted 1 times
...
jj22222
3 years, 4 months ago
C looks right
upvoted 2 times
...
woke
3 years, 6 months ago
C. Configure AWS WAF on the Application Load Balancer in a VPC.
upvoted 5 times
...
Ekay
3 years, 6 months ago
C is is correct. D is incorrect because question states EC2 instances sit behind an application load balancer
upvoted 5 times
...
syu31svc
3 years, 6 months ago
Provided answer is correct and link given supports it
upvoted 2 times
...
KK_uniq
3 years, 6 months ago
C for sure
upvoted 2 times
...
mryala
3 years, 6 months ago
it's C
upvoted 2 times
...
Ankitrathi85
3 years, 6 months ago
C righg
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago