Q88 — AWS SAA-C03 Ch.4
Question 88 of 105 | ← Chapter 4
Q283. A company has a three-tier environment on AWS that ingests sensor data from its users' devices. The traffic flows through a Network Load Balancer (NLB), then to Amazon EC2 instances for the web tier, and finally to EC2 instances for the application tier that makes database calls. What should a solutions architect do to improve the security of data in transit to the web tier?
- A. Configure a TLS listener and add the Server Certificate on the NLB. ✓
- B. Configure AWS Shield Advanced and enable AWS WAF on the NLB.
- C. Change the Load Balancer to an Application Load Balancer and attach AWS WAF to it.
- D. Encrypt the Amazon Elastic Block Store (Amazon EBS) volume on the EC2 instances using AWS Key Management Service (AWS KMS)
Correct Answer: A. Configure a TLS listener and add the Server Certificate on the NLB.
Explanation
User - NLB - EC2 (Web) + DB