🔥 3-day streak
AWS Certified Security - Specialty125 / 184
Question 125 of 184
A company runs a three-tier application in a VPC with public and private subnets across two Availability Zones. The security team wants centralized, stateful inspection of all north-south traffic (internet-bound and inbound) with the ability to apply Suricata-compatible intrusion prevention signatures. They also require that the inspection layer be highly available and managed by AWS rather than self-managed EC2 appliances. Which deployment approach meets these requirements?
Reviewed for accuracy · Report an issueNext question