ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 321 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 321
Topic #: 1
[All AWS Certified Security - Specialty Questions]

A company runs a global ecommerce website that is hosted on AWS. The company uses Amazon CloudFront to serve content to its user base. The company wants to block inbound traffic from a specific set of countries to comply with recent data regulation policies.
Which solution will meet these requirements MOST cost-effectively?

  • A. Create an AWS WAF web ACL with an IP match condition to deny the countries' IP ranges. Associate the web ACL with the CloudFront distribution.
  • B. Create an AWS WAF web ACL with a geo match condition to deny the specific countries. Associate the web ACL with the CloudFront distribution.
  • C. Use the geo restriction feature in CloudFront to deny the specific countries.
  • D. Use geolocation headers in CloudFront to deny the specific countries.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by mh777 at Sept. 1, 2022, 7:38 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mh777
Highly Voted 2 years, 8 months ago
Selected Answer: C
C: https://aws.amazon.com/premiumsupport/knowledge-center/cloudfront-geo-restriction/
upvoted 7 times
...
Toptip
Most Recent 1 year, 11 months ago
Selected Answer: C
C - CF has this build-in feature.. don't need to use WAF for that
upvoted 1 times
...
G4Exams
2 years, 1 month ago
Selected Answer: C
Geo restriction is the right answer here for sure.
upvoted 1 times
...
HieuTT
2 years, 6 months ago
325 is the end question ??? While Database have 334 questions
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago