A company that hosts a multi-tier ecommerce web application on flaws has been alerted to suspicious application traffic. The architecture consists of Amazon EC2 instances deployed across multiple Availability Zones behind an Application Load Balancer (ALB). After examining the instance logs, a SysOps administrator determines that the suspicious traffic is an attempted SQL injection attack.
What should the SysOps administrator do to prevent similar attacks?

A. Create an Amazon CloudFront distribution with the ALB as the origin. Enable flaws Shield Advanced to protect from SQL injection attacks at edge locations. B. Create an flaws WAF web ACL, and configure a SQL injection rule to add to the web ACL. Associate the WAF web ACL with the ALB. C. Enable Amazon GuardDuty. Use Amazon EventBridge (Amazon CloudWatch Events) to trigger an flaws Lambda function every time GuardDuty detects SQL injection. D. Install Amazon Inspector on the EC2 instances, and configure a rules package. Use the findings reports to identify and block SQL injection attacks. Correct Answer: A This question is in SOA-C01 AWS Certified SysOps Administrator – Associate Exam For getting AWS Certified SysOps Administrator – Associate Certificate

Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Amazon.
Trademarks, certification & product names are used for reference only and belong to Amazon.
The website does not contain actual questions and answers from Amazon's Certification Exam.