SOA-C02 · Question #125
SOA-C02 Question #125: Real Exam Question with Answer & Explanation
The correct answer is A: Deploy a global-scoped AWS WAF web ACL with an allow default action.. https://docs.aws.amazon.com/waf/latest/developerguide/classic-web-acl-default-action.html
Question
A company's public website is hosted in an Amazon S3 bucket in the us-east-1 Region behind an Amazon CloudFront distribution. The company wants to ensure that the website is protected from DDoS attacks. A SysOps administrator needs to deploy a solution that gives the company the ability to maintain control over the rate limit at which DDoS protections are applied. Which solution will meet these requirements?
Options
- ADeploy a global-scoped AWS WAF web ACL with an allow default action.
- BDeploy an AWS WAF web ACL with an allow default action in us-east-1.
- CDeploy a global-scoped AWS WAF web ACL with a block default action.
- DDeploy an AWS WAF web ACL with a block default action in us-east-1.
Explanation
https://docs.aws.amazon.com/waf/latest/developerguide/classic-web-acl-default-action.html
Community Discussion
No community discussion yet for this question.