Which solution will meet these requirements?

By:
In: SOA-C02
Tagged:
With: 1 Comment
A company’s web application is available through an Amazon CloudFront distribution and directly through an internet-facing Application Load Balancer (ALB).A SysOps administrator must make the application accessible only through the CloudFront distribution and not directly through the ALB.The SysOps administrator must make this change without changing the application code.

Which solution will meet these requirements?

Modify the ALB type to internal. Set the distribution’s origin to the internal ALB domain name.

Create a Lambda@Edge function. Configure the function to compare a custom header value in the request with a stored password and to forward the request to the origin in case of a match. Associate the function with the distribution.

Replace the ALB with a new internal ALB. Set the distribution’s origin to the internal ALB domain name. Add a custom HTTP header to the origin settings for the distribution. In the ALB listener, add a rule to forward requests that contain the matching custom header and the header’s value. Add a default rule to return a fixed response code of 403.

Add a custom HTTP header to the origin settings for the distribution. In the ALB listener, add a rule to forward requests that contain the matching custom header and the header’s value. Add a default rule to return a fixed response code of 403.

2025-10-08

1 Comment

  1. Timothy
    Author

    I design that the answer is:
    Add a custom HTTP header to the origin settings for the distribution. In the ALB listener, add a rule to forward requests that contain the matching custom header and the header’s value. Add a default rule to return a fixed response code of 403.

Leave a Reply

Your email address will not be published. Required fields are marked *

3 × one =