Topic 1 Question 121
2 つ選択A financial company is planning to migrate its web application from on premises to AWS. The company uses a third-party security tool to monitor the inbound traffic to the application. The company has used the security tool for the last 15 years, and the tool has no cloud solutions available from its vendor. The company's security team is concerned about how to integrate the security tool with AWS technology.
The company plans to deploy the application migration to AWS on Amazon EC2 instances. The EC2 instances will run in an Auto Scaling group in a dedicated VPC. The company needs to use the security tool to inspect all packets that come in and out of the VPC. This inspection must occur in real time and must not affect the application's performance. A solutions architect must design a target architecture on AWS that is highly available within an AWS Region.
Which combination of steps should the solutions architect take to meet these requirements?
Deploy the security tool on EC2 instances m a new Auto Scaling group in the existing VPC
Deploy the web application behind a Network Load Balancer
Deploy an Application Load Balancer in front of the security tool instances
Provision a Gateway Load Balancer for each Availability Zone to redirect the traffic to the security tool
Provision a transit gateway to facilitate communication between VPCs.
ユーザの投票
コメント(17)
- 正解だと思う選択肢: AD
Option B, deploying the web application behind a Network Load Balancer, is not relevant to integrating the third-party security tool with AWS technology.
Option C, deploying an Application Load Balancer in front of the security tool instances, is not necessary because a Gateway Load Balancer is already being used to redirect traffic to the security tool.
Option E, provisioning a transit gateway to facilitate communication between VPCs, is not relevant to integrating the third-party security tool with AWS technology or inspecting packets in and out of the VPC.
In summary, options A and D are the best choices because address the specific requirements stated in the scenario while options B, C and E do not.
👍 7OCHT2023/04/07 - 正解だと思う選択肢: DE
the question already said: The EC2 instances will run in an Auto Scaling group in a dedicated VPC. I think there is no need to "repeat" that in the "answer. It's DE
👍 3andras2023/03/07 - 正解だと思う選択肢: AD
AD for me. DE would be more relevant if there were multiple VPCs or hybrid architectures involved.
👍 3mfsec2023/03/26
シャッフルモード