A company is hosting a public-facing web application. They want to protect the application from DDoS attacks, SQL injection, and ensure traffic is distributed across multiple Availability Zones. Which THREE services should be combined? (Select THREE.)

Answer options:

Application Load Balancer (ALB)

AWS WAF

AWS Shield

Amazon GuardDuty

AWS Network Firewall

Amazon Macie

How to approach this question

Match requirements to services: Traffic distribution = ALB, SQL injection = WAF, DDoS = Shield.

Full Answer

An ALB distributes incoming application traffic across multiple targets in multiple AZs. AWS WAF attached to the ALB protects against SQL injection. AWS Shield Standard (enabled by default) or Advanced protects against DDoS attacks.

Common mistakes

Selecting GuardDuty for active protection.

Question 13 All questions Question 15

Practice the full AWS SAA-C03 Practice Exam 3

65 questions · hints · full answers · grading

More questions from this exam

Q01A company stores sensitive documents in an Amazon S3 bucket. The security team requires that only...Easy Q02A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...Medium Q03A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer (AL...Easy Q04A company wants to continuously monitor its AWS accounts for malicious activity and unauthorized ...Medium Q05A company needs to encrypt data at rest in Amazon RDS and manage database credentials securely. T...Medium

View all 65 questions →