ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C02 topic 1 question 671 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C02
Question #: 671
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C02 Questions]

A company has users all around the world accessing its HTTP-based application deployed on Amazon EC2 instances in multiple AWS Regions. The company wants to improve the availability and performance of the application. The company also wants to protect the application against common web exploits that may affect availability, compromise security, or consume excessive resources. Static IP addresses are required.
What should a solutions architect recommend to accomplish this?

  • A. Put the EC2 instances behind Network Load Balancers (NLBs) in each Region. Deploy AWS WAF on the NLBs. Create an accelerator using AWS Global Accelerator and register the NLBs as endpoints.
  • B. Put the EC2 instances behind Application Load Balancers (ALBs) in each Region. Deploy AWS WAF on the ALBs. Create an accelerator using AWS Global Accelerator and register the ALBs as endpoints.
  • C. Put the EC2 instances behind Network Load Balancers (NLBs) in each Region. Deploy AWS WAF on the NLBs. Create an Amazon CloudFront distribution with an origin that uses Amazon Route 53 latency-based routing to route requests to the NLBs.
  • D. Put the EC2 instances behind Application Load Balancers (ALBs) in each Region. Create an Amazon CloudFront distribution with an origin that uses Amazon Route 53 latency-based routing to route requests to the ALBs. Deploy AWS WAF on the CloudFront distribution.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by guptatrng at Sept. 9, 2022, 6:40 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
attila9778
2 years, 6 months ago
Answer: B Common web exploits -> WAF EC2 instances + availability -> ALB static IP address -> Global accelerator
upvoted 3 times
...
jxp09
2 years, 8 months ago
Selected Answer: D
Perfect D
upvoted 1 times
Jobair
2 years, 6 months ago
Its not perfect
upvoted 1 times
...
...
rodriiviru
2 years, 8 months ago
Selected Answer: B
WAF don't support NLB. And the question say: "The company wants to improve the availability and performance of the application." Performance = global accelerator. Global Accelerator provides you with static IP addresses that you associate with your accelerator. https://docs.aws.amazon.com/global-accelerator/latest/dg/what-is-global-accelerator.html
upvoted 3 times
...
praveenas400
2 years, 8 months ago
Selected Answer: D
D is correct, Gloabal Accelerator is for non HTTP use cases, but current scenario is HTTP
upvoted 1 times
attila9778
2 years, 6 months ago
Also CloudFront does not support static IP addresses, see: https://aws.amazon.com/premiumsupport/knowledge-center/cloudfront-distribution-static-ip/
upvoted 1 times
...
attila9778
2 years, 6 months ago
Global Accelerator can be used for HTTP applications with static IP addresses as well, as per: "Global Accelerator is a good fit for non-HTTP use cases, such as gaming (UDP), IoT (MQTT), or Voice over IP, as well as for HTTP use cases that specifically require static IP addresses or deterministic, fast regional failover. " https://aws.amazon.com/global-accelerator/faqs/
upvoted 1 times
...
...
nymets
2 years, 8 months ago
Selected Answer: B
ALB + WAF + Global Accelerator
upvoted 4 times
...
envest
2 years, 8 months ago
IMO: C, ACM supports classic, ALB & NLB.
upvoted 1 times
...
guptatrng
2 years, 9 months ago
NLB does not support WAF.. It should be B..
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel