Practice free →
HomeAWS SysOps Associatecloudcomputingsysopssecuritynetwork › An application backed by an ALB receives an unus…

An application backed by an ALB receives an unusually high number of 4xx errors from a few IP ranges. Which approach BEST blocks them at the edge before traffic reaches the ALB?

ADisabling the ALB temporarily
BManually adding security-group ingress denies (security groups have no explicit deny)
CAWS WAF web ACL with an IP-set rule and rate-based rules in front of the ALB
DMigrating to AWS Snowball
Answer & Solution
Correct answer: C. AWS WAF web ACL with an IP-set rule and rate-based rules in front of the ALB
WAF supports IP sets and rate-based rules and sits in front of ALB / CloudFront / API Gateway. Security groups don't have deny rules. Disabling the ALB takes down service; Snowball is offline transfer.
Solve this in the app — AWS SysOps Associate practice & 24k+ MCQs →
Related questions