Which solution win meet this requirement?

PAS-C01 0 Comments

A company hosts multiple SAP applications on Amazon EC2 instances in a VPC While monitoring the environment the company notices that multiple port scans are attempting to connect to SAP portals inside the VPC. These port scans are originating from the same IP address block. The company must deny access to the VPC from all the offending IP addresses for the next 24 hours.

Which solution win meet this requirement?
A . Modify network ACLs that are associated with all public subnets in the VPC to deny access from the IP address block
B. Add a rule in the security group of the EC2 instances to deny access from the IP address block
C. Create a policy in AWS identity and Access Management (1AM) to deny access from the IP address block
D. Configure the firewall m the operating system of the EC2 instances to deny access from the IP address block

Answer: C

Latest PAS-C01 Dumps Valid Version with 65 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PAS-C01 PDF     PAS-C01 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments