Which solution will meet these requirements?

A company recently migrated to AWS and wants to implement a solution to protect the traffic that flows in and out of the production VPC.The company had an inspection server in its on-premises data center.The inspection server performed specific operations such as traffic flow inspection and traffic filtering.The company wants to have the same functionalities in the AWS Cloud.

Which solution will meet these requirements?

Use Amazon GuardDuty for traffic inspection and traffic filtering in the production VPC.

Use Traffic Mirroring to mirror traffic from the production VPC for traffic inspection and filtering.

Use AWS Network Firewall to create the required rules for traffic inspection and traffic filtering for the production VPC.

Use AWS Firewall Manager to create the required rules for traffic inspection and traffic filtering for the production VPC.

Explanations:

Amazon GuardDuty is primarily a threat detection service and does not directly perform traffic inspection or filtering. It analyzes data to detect potential threats but does not actively filter or inspect traffic.

Traffic Mirroring is used for network monitoring, enabling copies of network traffic to be sent to tools for analysis. It does not perform active traffic filtering or inspection by itself.

AWS Network Firewall is designed for traffic inspection and filtering in a VPC. It allows creating rules to inspect, allow, or deny traffic, meeting the company’s requirements effectively.

AWS Firewall Manager helps manage firewall rules across multiple accounts but does not provide direct traffic inspection and filtering functions by itself.

Learn & move to cloud

Which solution will meet these requirements?

Explanations:

Leave a Reply Cancel reply