Question 194:
You have deployed a multi-tier Web Application in an AWS cloud. Web servers, Application servers & Database servers are deployed in US East Region. For High availability, Application Load Balancers are configured in the front end to balance traffic across Multiple AZ’s in this region. For Caching of data, you are using Amazon CloudFront at edge locations. The security team has received a list of blacklist IP address deemed as Spammers. They want you to immediately block these IP addresses at the farthest point from cloud infrastructure. Which of the following is the correct option to block IP addresses?
Answer options:
A.In the US WEST region, create Web ACL, to block all IP address & apply it at edge level CloudFront. B.At the Global level, create Web ACL, to block all IP address & apply it at edge level CloudFront. C.In each AZ of the US East region, create Web ACL to block all IP address & apply it at Application Load Balancer. D.In the US East region, create Web ACL to block all IP addresses & apply it at Application Load Balancer.