Which of the below services can be integrated with the AWS Web application firewall (WAF) service? Choose 2 answers from the options given below.
Click on the arrows to vote for the correct answer
A. B. C. D.Answer: A and C.
Option A is CORRECT because AWS WAF can be deployed on Amazon CloudFront.
As part of Amazon CloudFront, it can be part of your Content Distribution Network (CDN), protecting your resources and content at the Edge locations.
Options B is incorrect because, by default, AWS lambda is not integrated with AWS WAF.
You can still use AWS WAF to automate security using AWS Lambda, which can analyze web logs, identify malicious requests, and automatically update security rules.
Option C is CORRECT because AWS WAF can be deployed on Application Load Balancer (ALB)
As a part of the Application Load Balancer, it can protect your origin web servers running behind the ALBs.
Option D is incorrect because natively AWS WAF integrated with Application Load Balancer and not with a Classic load balancer.
For more information on the web application firewall, kindly refer to the below URLs:
https://aws.amazon.com/waf/faq/ https://aws.amazon.com/waf/preconfiguredrules/#:~:text=One%20of%20the%20ways%20in,and%20automatically%20update%20security%20rules.The AWS Web Application Firewall (WAF) is a web application firewall that helps protect web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.
WAF allows customers to define customizable web security rules that help block common attack patterns, such as SQL injection or cross-site scripting (XSS). WAF can also help mitigate application-layer distributed denial of service (DDoS) attacks.
WAF can be integrated with several AWS services to provide a comprehensive security solution for your web applications. Two services that can be integrated with WAF are:
AWS CloudFront: It is a content delivery network (CDN) that securely delivers data, videos, applications, and APIs to customers globally with low latency and high transfer speeds. You can use WAF with CloudFront to help protect your web applications from common web exploits, such as SQL injection or cross-site scripting (XSS) attacks.
AWS Application Load Balancer: It is a load balancer that routes traffic to backend targets, such as EC2 instances, containers, or Lambda functions, based on the content of the request. You can use WAF with Application Load Balancer to help protect your web applications from common web exploits, such as SQL injection or cross-site scripting (XSS) attacks.
AWS Lambda and AWS Classic Load Balancer are not directly integrated with WAF. However, you can use Lambda to extend the functionality of WAF by creating custom rules that can block specific types of traffic. Classic Load Balancer is a legacy load balancer that has been replaced by Application Load Balancer and Network Load Balancer. Therefore, it is not recommended to use Classic Load Balancer for new applications.
In summary, the correct answers are A. AWS CloudFront and C. AWS Application Load Balancer.