Which of the following options would you consider?

SAP-C01 0 Comments

You are designing an intrusion detection prevention (IDS/IPS) solution for a customer web application in a single VPC. You are considering the options for implementing IOS IPS protection for traffic coming from the Internet.

Which of the following options would you consider? (Choose two.)
A . Implement IDS/IPS agents on each Instance running in VPC
B . Configure an instance in each subnet to switch its network interface card to promiscuous mode and analyze network traffic.
C . Implement Elastic Load Balancing with SSL listeners in front of the web applications
D . Implement a reverse proxy layer in front of web servers and configure IDS/IPS agents on each reverse proxy server.

Answer: AD

Explanation:

EC2 does not allow promiscuous mode, and you cannot put something in between the ELB and the web server (like a listener or IDP)

Latest SAP-C01 Dumps Valid Version with 684 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SAP-C01 PDF     SAP-C01 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments