A company has a web application that is used across all company divisions.Each application request contains a header that includes the name of the division making the request.The SysOps Administrator wants to identify and count the requests from each division.
Which condition should be added to the web ACL of the AWS WAF to accomplish this?
Cross-site scripting
Geo match
IP match
String match
Explanations:
Cross-site scripting (XSS) is used to detect and block malicious scripts embedded in web requests, not for identifying or counting division names in headers.
Geo match is used to filter requests based on geographic location (IP address origin), not to match specific string data in headers.
IP match is used to filter requests based on the source IP address, not on specific data within the request headers.
String match allows the AWS WAF to search for specific text patterns within request headers, making it suitable for identifying and counting division names sent in the header.
From what I’ve heard, the answer is:
String match