CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free AWS Certified Solutions Architect Associate SAA-C03 Practice Question

Your client has a cloud-based application that must be securely accessible by both internal staff and external clients. Internal staff should only access the application via the company's network, while external clients should be granted direct access through the public internet. Which service or feature should the architect leverage to enforce this selective access policy for the application?

  • Set up a dedicated networking linkage for exclusive database connectivity, restricting all other forms of access.

  • Implement a global DNS service to discriminate traffic and control application access.

  • Activate a premium security service typically used for safeguarding against distributed denial-of-service attacks.

  • Deploy a web application firewall to define access rules contingent on the source IP addresses.

This question's topic:
AWS Certified Solutions Architect Associate SAA-C03 / 
Design Secure Architectures
Your Score:
Design Secure Architectures
Design Resilient Architectures
Design High-Performing Architectures
Design Cost-Optimized Architectures