Question #1144
Which AWS service can be integrated with AWS WAF to protect web applications from common vulnerabilities?
Amazon EC2
Amazon CloudFront
AWS Trusted Advisor
Network Load Balancer
Explanation
AWS WAF (Web Application Firewall) is designed to protect web applications from common vulnerabilities like SQL injection and cross-site scripting (XSS). It integrates with services that handle HTTP/HTTPS traffic, such as Amazon CloudFront (a content delivery network) and Application Load Balancer (ALB).
- Correct Answer (B): Amazon CloudFront can be integrated with AWS WAF to filter malicious requests at the edge, ensuring protection before traffic reaches the web application.
- Why Others Are Incorrect:
- A (Amazon EC2): EC2 instances themselves do not natively integrate with AWS WAF. WAF requires a proxy service like CloudFront or ALB.
- C (AWS Trusted Advisor): This service provides cost/security optimization recommendations but does not handle traffic filtering or integrate with WAF.
- D (Network Load Balancer): NLB operates at the transport layer (Layer 4) and does not support AWS WAF, which requires application-layer (Layer 7) services like CloudFront or ALB.
Key Points: AWS WAF integrates with CloudFront (for edge security) and ALB (for application-layer load balancing). The question specifies 'web applications,' making CloudFront the best choice among the options provided.
Answer
The correct answer is: B