Examtopics

AWS Certified Security - Specialty

167
169

Topic 1 Question 168
A company runs a global ecommerce website that is hosted on AWS. The company uses Amazon CloudFront to serve content to its user base. The company wants to block inbound traffic from a specific set of countries to comply with recent data regulation policies.

Which solution will meet these requirements MOST cost-effectively?
- Create an AWS WAF web ACL with an IP match condition to deny the countries' IP ranges. Associate the web ACL with the CloudFront distribution.
- Create an AWS WAF web ACL with a geo match condition to deny the specific countries. Associate the web ACL with the CloudFront distribution.
- Use the geo restriction feature in CloudFront to deny the specific countries.
- Use geolocation headers in CloudFront to deny the specific countries.
ユーザの投票
コメント(2)
- C. https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/georestrictions.html
  
  👍 2
  grekh0012024/05/31
- 正解だと思う選択肢: C
  https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/georestrictions.html
  
  👍 1
  toshimizu2024/06/21
シャッフルモード

167
169