Amazon CLF-C02 Exam - Topic 4 Question 36 Discussion

Actual exam question for Amazon's CLF-C02 exam

Question #: 36
Topic #: 4

A company notices suspicious network activity against an application that is running on a fleet of Amazon EC2 instances. The suspicious activity is coming from a single IP address.

Which AWS service should the company use to block access from this IP address?

AAWS Shield

BAWS Config

CAmazon GuardDuty

DAWS WAF

Show Suggested Answer

Suggested Answer: D

AWS WAF Overview:

AWS Web Application Firewall (WAF) allows users to create rules to block or allow traffic based on IP addresses, request patterns, and other conditions.

It is ideal for blocking traffic from a specific IP address.

Why AWS WAF Meets the Requirement:

The company can create a WAF rule to block traffic from the malicious IP address.

WAF integrates with services like Amazon CloudFront, Application Load Balancer, and API Gateway.

Why Other Options Are Incorrect:

A . AWS Shield: Protects against DDoS attacks but does not allow custom IP blocking.

B . AWS Config: Monitors resource configurations but does not block IPs.

C . Amazon GuardDuty: Detects threats but does not block traffic directly.

AWS WAF Documentation

by Jesusita at Jan 09, 2025, 05:05 PM

Limited Time Offer

25%

Off

Get Premium CLF-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Stephaine

3 months ago

AWS Shield is for DDoS, not IP blocking!

upvoted 0 times

...

Almeta

3 months ago

Surprised people still confuse these services!

upvoted 0 times

...

Noble

3 months ago

WAF is the right choice here, no doubt!

upvoted 0 times

...

Alease

4 months ago

I thought GuardDuty was the way to go?

upvoted 0 times

...

Lyndia

4 months ago

Definitely AWS WAF for blocking IPs!

upvoted 0 times

...

Thomasena

4 months ago

I feel like AWS Shield is more about DDoS protection, so it probably isn't the answer here.

upvoted 0 times

...

Fernanda

4 months ago

I’m a bit confused; I thought GuardDuty was for detecting threats, not blocking them. Is that right?

upvoted 0 times

...

Sueann

4 months ago

I remember practicing a question about blocking IPs, and I think it was AWS WAF that we used in that scenario too.

upvoted 0 times

...

Madonna

5 months ago

I think AWS WAF might be the right choice here since it can block specific IP addresses, but I'm not completely sure.

upvoted 0 times

...

Myra

5 months ago

AWS WAF is the way to go. It gives you granular control to block specific IP addresses that are causing issues.

upvoted 0 times

...

Ryan

5 months ago

I'm a bit confused on the differences between the AWS security services. I'll need to review the details of each one to determine the best fit.

upvoted 0 times

...

Mindy

5 months ago

AWS WAF is the obvious choice here. It's designed specifically for web application firewall functionality, which is exactly what we need to block that IP.

upvoted 0 times

...

Wilson

5 months ago

Hmm, I'm not too familiar with AWS security services. I'll have to think this through carefully to make sure I pick the right one.

upvoted 0 times

...

Katlyn

5 months ago

This seems like a straightforward security question. I'd go with AWS WAF to block the suspicious IP address.

upvoted 0 times

...

Buddy

1 year ago

Hmm, I'd say D) AWS WAF. It's like having a virtual bodyguard for your web app, keeping the bad guys at bay.

upvoted 0 times

Lisha

11 months ago

I see your point. It's always good to have multiple layers of security in place.

upvoted 0 times

...

Bernardine

12 months ago

That's true, but I think D) AWS WAF would be more effective in this situation.

upvoted 0 times

...

Pete

12 months ago

But what about using A) AWS Shield? It's specifically designed to protect against DDoS attacks.

upvoted 0 times

...

Laura

12 months ago

I agree, D) AWS WAF is a good choice to block access from that suspicious IP address.

upvoted 0 times

...

Pearlene

1 year ago

I bet the answer is D) AWS WAF. It's like having a bouncer at the door, kicking out the troublemakers before they can cause any real damage.

upvoted 0 times

Cristy

1 year ago

Yeah, AWS WAF can help block that suspicious IP address.

upvoted 0 times

...

Phuong

1 year ago

I think you're right, D) AWS WAF is the way to go.

upvoted 0 times

...

Billi

1 year ago

Yeah, AWS WAF acts like a bouncer for your application, keeping out unwanted traffic from that single IP address.

upvoted 0 times

...

Santos

1 year ago

I think you're right, AWS WAF is the way to go. It can help block those suspicious activities.

upvoted 0 times

...

Dalene

1 year ago

I'm not sure, but I think AWS Shield could also be a good option to protect against DDoS attacks.

upvoted 0 times

...

Tresa

1 year ago

I agree with Marnie. AWS WAF is specifically designed to protect web applications from common web exploits.

upvoted 0 times

...

Valene

1 year ago

C) Amazon GuardDuty can detect and respond to suspicious activity, but AWS WAF is the right choice for actively blocking the IP address.

upvoted 0 times

Paola

1 year ago

Yes, GuardDuty can detect it, but WAF is the best option for actively blocking it.

upvoted 0 times

...

Edda

1 year ago

But wouldn't Amazon GuardDuty be better for detecting and responding to the activity?

upvoted 0 times

...

Chaya

1 year ago

I think we should use AWS WAF to block access from that suspicious IP address.

upvoted 0 times

...

Marnie

1 year ago

I think the company should use AWS WAF to block access from the suspicious IP address.

upvoted 0 times

...

Kristel

1 year ago

D) AWS WAF is the way to go. It's designed specifically for blocking suspicious IP addresses and protecting web applications.

upvoted 0 times

Sabine

1 year ago

Let's set up AWS WAF to block that suspicious activity.

upvoted 0 times

...

Sean

1 year ago

Agreed, AWS WAF is the best option for protecting web applications.

upvoted 0 times

...

Jennifer

1 year ago

We should use AWS WAF to block access from that IP address.

upvoted 0 times

...