ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 57 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional
Question #: 57
Topic #: 1
[All AWS Certified Solutions Architect - Professional Questions]

You are designing an intrusion detection prevention (IDS/IPS) solution for a customer web application in a single VPC. You are considering the options for implementing IOS IPS protection for traffic coming from the Internet.
Which of the following options would you consider? (Choose two.)

  • A. Implement IDS/IPS agents on each Instance running in VPC
  • B. Configure an instance in each subnet to switch its network interface card to promiscuous mode and analyze network traffic.
  • C. Implement Elastic Load Balancing with SSL listeners in front of the web applications
  • D. Implement a reverse proxy layer in front of web servers and configure IDS/IPS agents on each reverse proxy server.
Show Suggested Answer Hide Answer
Suggested Answer: AD 🗳️
EC2 does not allow promiscuous mode, and you cannot put something in between the ELB and the web server (like a listener or IDP)
by cldy at April 1, 2021, 8:23 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
amministrazione
8 months, 1 week ago
A. Implement IDS/IPS agents on each Instance running in VPC D. Implement a reverse proxy layer in front of web servers and configure IDS/IPS agents on each reverse proxy server.
upvoted 2 times
...
TechX
2 years, 10 months ago
Selected Answer: AD
It's AD Explanation: EC2 does not allow promiscuous mode, and you cannot put something in between the ELB and the web server (like a listener or IDP)
upvoted 2 times
...
01037
3 years, 5 months ago
A and D
upvoted 2 times
...
Malcnorth59
3 years, 6 months ago
A and D for me.
upvoted 1 times
...
cldy
3 years, 7 months ago
A.D. these are the two ways to implement IDS/IPS.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago