ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 251 discussion

Exam question from Amazon's ANS-C00
Question #: 251
Topic #: 1
[All ANS-C00 Questions]

Your company just deployed a WAF to protect its resources. You need to create a baseline before you start blocking traffic. How will you achieve this?

  • A. Set the WAF to Monitor mode.
  • B. Set the WAF to its defaults and let it do its job.
  • C. Setup a Lambda function to monitor Flow Logs and analyze the traffic using Elasticsearch.
  • D. A WAF is default deny and does not allow this. You need to use an IDS instead.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
Monitor mode is the only good choice.
by awspro2021 at March 12, 2021, 1:59 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mabalon
Highly Voted 3 years, 6 months ago
Answer A, Monitor Mode, but AWS call it Counter mode. https://docs.aws.amazon.com/waf/latest/developerguide/web-acl-testing.html In AWS FAQ say this "...allowing you to configure rules that allow, block, or monitor (count) web requests..."
upvoted 5 times
...
CloudSpecialist
Most Recent 3 years, 3 months ago
Selected Answer: A
A, set WAF to monitor
upvoted 1 times
...
anandmmx
3 years, 7 months ago
Answer : A, Monitor mode also known as listneing mode. is used to study application behaviours before applying the policy
upvoted 1 times
...
ChauPhan
3 years, 8 months ago
A. Set the WAF to Monitor mode.
upvoted 1 times
Huy
3 years, 8 months ago
Don't paste the answer please. Paste your finding
upvoted 6 times
...
...
awspro2021
3 years, 8 months ago
C. Setup a Lambda function to monitor Flow Logs and analyze the traffic using Elasticsearch.
upvoted 1 times
eeghai7thioyaiR4
3 years, 8 months ago
That is wrong, flow logs will not give you the payload (HTTP content etc) The right answer is A: setup the WAF in monitor mode This way, you can create rules in dry-mode, without actually impacting the traffic
upvoted 1 times
jithin1234
3 years, 7 months ago
i found waf in count and block mode. but I couldn't find WAF in monitor mode. https://d1.awsstatic.com/whitepapers/guidelines-implementing-aws-waf.pdf
upvoted 1 times
wahlbergusa
3 years, 7 months ago
Would the first question in AWS FAQ Help ? => https://aws.amazon.com/waf/faqs/ What is AWS WAF? AWS WAF is a web application firewall that helps protect web applications from attacks by allowing you to configure rules that allow, block, or monitor (count) web requests based on conditions that you define
upvoted 1 times
...
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel