Which of the following services can be used as a web application firewall in AWS?
Click on the arrows to vote for the correct answer
A. B. C. D.Answer - B.
The AWS Documentation mentions the following:
AWS WAF is a web application firewall that lets you monitor the HTTP and HTTPS requests that are forwarded to Amazon CloudFront or an Application Load Balancer.
AWS WAF also lets you control access to your content.
For more information on AWS WAF, please refer to the below URL:
https://docs.aws.amazon.com/waf/latest/developerguide/waf-chapter.htmlThe correct answer is B. AWS WAF.
Explanation:
AWS WAF (Web Application Firewall) is a web application firewall that helps protect web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. It can be used to control access to web applications based on IP addresses, HTTP headers, HTTP body or URI strings. AWS WAF also allows you to create custom rules that block common attack patterns like SQL injection or cross-site scripting (XSS).
Option A, AWS EC2 (Elastic Compute Cloud) is a service that provides scalable compute capacity in the cloud. While you can certainly use EC2 instances to run your web application, it is not a web application firewall.
Option C, AWS Firewall Manager is a service that makes it easy to centrally configure and manage firewall rules across multiple AWS accounts and resources. While it can be used to manage network-based firewalls, it is not a web application firewall.
Option D, AWS Shield is a managed DDoS (Distributed Denial of Service) protection service. While it can be used to protect your web applications from DDoS attacks, it is not a web application firewall.
In conclusion, AWS WAF is the service that can be used as a web application firewall in AWS.