SOA-C02 · Question #126
SOA-C02 Question #126: Real Exam Question with Answer & Explanation
Sign in or unlock SOA-C02 to reveal the answer and full explanation for question #126. The question stem and answer options stay visible for context.
Question
A company hosts an internal application on Amazon EC2 instances. All application data and requests route through an AWS Site-to-Site VPN connection between the on-premises network and AWS. The company must monitor the application for changes that allow network access outside of the corporate network. Any change that exposes the application externally must be restricted automatically. Which solution meets these requirements in the MOST operationally efficient manner?
Options
- ACreate an AWS Lambda function that updates security groups that are associated with the
- BCreate a scheduled Amazon EventBridge (Amazon CloudWatch Events) rule that targets an
- CConfigure AWS Config and a custom rule to monitor whether a security group allows inbound
- DConfigure AWS Config and the managed rule for monitoring public IP associations with the
Unlock SOA-C02 to see the answer
You've previewed enough free SOA-C02 questions. Unlock SOA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.