ANS-C01 · Question #233
ANS-C01 Question #233: Real Exam Question with Answer & Explanation
Sign in or unlock ANS-C01 to reveal the answer and full explanation for question #233. The question stem and answer options stay visible for context.
Question
A company is planning to host external websites on AWS. The websites will include multiple tiers such as web servers, application logic services, and databases. The company wants to use AWS Network Firewall, AWS WAF, and VPC security groups for network security. The company must ensure that the Network Firewall firewalls are deployed appropriately within relevant VPCs. The company needs the ability to centrally manage policies that are deployed to Network Firewall and AWS WAF rules. The company also needs to allow application teams to manage their own security groups while ensuring that the security groups do not allow overly permissive access. What is the MOST operationally efficient solution that meets these requirements?
Options
- ADefine Network Firewall firewalls, AWS WAFV2 web ACLs. Network Firewall policies, and VPC
- BDefine Network Firewall firewalls. AWS WAFV2 web ACLs, Network Firewall policies, and VPC
- CDeploy AWS WAFv2 IP sets and AWS WAFv2 web ACLs with AWS CloudFormation. Use AWS
- DDefine Network Firewall firewalls, AWS WAFv2 web ACLS, Network Firewall policies, and VPC
Unlock ANS-C01 to see the answer
You've previewed enough free ANS-C01 questions. Unlock ANS-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.