MemberSeptember 13, 2020 at 1:03 pm
I have this doubt in IDS topics. I saw this question is somewhere which I do not know. I am confused with the answer given. I feel the answer should be Option A
In the question below
A web company is looking to implement an intrusion detection and prevention system into their deployed VPC. This platform should have the ability to scale to thousands of instances running inside of the VPC. How should they architect their solution to achieve these goals?
What would be the correct answer?
Option A :-
Create a second VPC and route all traffic from the primary application VPC through the second VPC where the scalable virtulized IDS/IPS platform resides
Configure each host with an agent that collects all network traffic and sends that traffic to the IDS/IPS platform for inspection
When I checked the answers, it is given that answer is option B, “Configure each host with an agent that collects all network traffic to the IDS/IPS platform for inspection. But I will it should be the option A
MemberSeptember 17, 2020 at 11:55 am
It seems that you posted an external question that is not part of our practice tests. I highly suggest that you contact the author of the practice question you posted as they are the ones with the correct answer. We provide full support to our content but not for external ones. And more importantly, make sure that the questions you are posting complies with Section 2.3. (Confidentiality) of the AWS Certification Program Agreement https://aws.amazon.com/certification/certification-agreement/
Gerome @ Tutorials Dojo
Log in to reply.