Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 128 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 128
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A company hosts an application on Amazon EC2 that is subject to specific rules for regulatory compliance. One rule states that traffic to and from the workload must be inspected for network-level attacks. This involves inspecting the whole packet.

To comply with this regulatory rule, a security engineer must install intrusion detection software on a c5n.4xlarge EC2 instance. The engineer must then configure the software to monitor traffic to and from the application instances.

What should the security engineer do next?

  • A. Place the network interface in promiscuous mode to capture the traffic
  • B. Configure VPC Flow Logs to send traffic to the monitoring EC2 instance using a Network Load Balancer.
  • C. Configure VPC traffic mirroring to send traffic to the monitoring EC2 instance using a Network Load Balancer.
  • D. Use Amazon Inspector to detect network-level attacks and trigger an AWS Lambda function to send the suspicious packets to the EC2 instance.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Zek at May 13, 2024, 4:58 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
navid1365
2 months, 1 week ago
Selected Answer: C
C : VPC Traffic Mirroring: https://aws.amazon.com/blogs/aws/new-vpc-traffic-mirroring/
upvoted 2 times
...
Certified101
4 months, 2 weeks ago
Selected Answer: C
C is correct
upvoted 3 times
...
Zek
4 months, 3 weeks ago
C: https://aws.amazon.com/blogs/aws/new-vpc-traffic-mirroring/ Also see discussions here https://www.examtopics.com/discussions/amazon/view/47597-exam-aws-certified-security-specialty-topic-1-question-228/
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel