ExamGecko
Search Search Login
Home Home / Amazon / CLF-C01
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which of the following is an AWS value proposition that describes a user's ability to scale infrastructure based on demand?
A company uses Amazon EC2 instances and wants to maintain high availability in geographically distributed locations Which choice should the company make for the location of its EC2 instances?
A company spends several months upgrading its on-premises infrastructure every few years The company wants to reduce infrastructure procurement time by migrating to the AWS Cloud. What is the main benefit of migrating to the AWS Cloud for this use case?
What does the AWS cloud provide to increase the speed and agility of execution for customers? (Select Two.)
Which tool or feature provides a report to forecast AWS billing costs for the next 3 months?
A user is comparing purchase options for an application that runs on Amazon EC2 and Amazon RDS. The application cannot sustain any interruption The application experiences a predictable amount of usage, including some seasonal spikes that last only a few weeks at a time It is not possible to modify the application. Which purchase option meets these requirements MOST cost-effectively?
A user wants to identify any security group that is allowing unrestricted incoming SSH traffic Which AWS service can be used to accomplish this goal?
Which of the following are customer responsibilities under the AWS shared responsibility model? (Select Two.)
A bank needs to store recordings of calls made to its contact center for 6 years. The recordings must be accessible within 48 hours from the time they are requested. Which AWS service will provide a secure and cost-effective solution for retaining these files?
Which AWS service is a highly available and scalable DNS web service?

Question 865 - CLF-C01 discussion

Report
Export

A company provides Amazon Workspaces to its remote employees. The company wants to prevent employees from using their virtual desktops to visit specific websites that are known to be malicious.

Which AWS service should the company use to meet this requirement?

A.
AWS Shield Advanced
Answers
A.
AWS Shield Advanced
B.
Amazon Route 53
Answers
B.
Amazon Route 53
C.
Amazon GuardDuty
Answers
C.
Amazon GuardDuty
D.
AWS Network Firewall
Answers
D.
AWS Network Firewall
Suggested answer: D

Explanation:

Explanation:

https://aws.amazon.com/blogs/desktop-and-application-streaming/filtering-internet-traffic-fromamazon-workspaces/

AWS Network Firewall extends protection beyond SG- and NACL-levels by protecting at the route level and offering stateless and stateful rules from layers 3 through 7 in the OSI Model. It uses the certificate fully qualified domain name (FQDN) or Server Name Indication (SNI) to determine if a website is allowed for HTTPS traffic. This is a commonly requested security requirement. Reviewing these design examples of AWS Network Firewall will accelerate your migration to Amazon WorkSpaces. AWS Network Firewall is a managed service, with no infrastructure to manage or patch you can simplify operational excellence. Native settings for advanced filtering (including domain name), and network traffic inspection can alert and block traffic related to malware. It also has layer 7 intrusion prevent system (IPS) rules, and the ability to apply TLS fingerprinting to prevent a spoofed IP or FQDN.

Show Answer
asked 16/09/2024
Giuseppina Mancinelli
34 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms