You are designing a social media site and are considering how to mitigate distributed denial-of-service (DDoS)
attacks. Which of the below are viable mitigation techniques? (Choose 3 answers)
A.
Add multiple elastic network interfaces (ENIs) to each EC2 instance to increase the network bandwidth.
B.
Use dedicated instances to ensure that each instance has the maximum performance possible.
C.
Use an Amazon CloudFront distribution for both static and dynamic content.
D.
Use an Elastic Load Balancer with auto scaling groups at the web. App and Amazon Relational Database
Service (RDS) tiers
E.
Add alert Amazon CloudWatch to look for high Network in and CPU utilization.
F.
Create processes and capabilities to quickly add and remove rules to the instance OS firewall.
C D E
Answer: C,D, E
C, D, E, if you are to add “firewall rules” just do it with security groups.
If Chose D, Make sure DRS use AutoScaling ?
Choice D, doubt about it.
RDS is a raltional database system, serving online transactional processing activities. This question talks about techniques to mitigate possible DDoS attacks. Also, AWS is pretty much delegating design responiblities to skillful programming thoughts, and we may need to consider the choice F, instead of D.
C,D,E