ANS-C01 Domain 4: Network Security, Compliance, and Governance

For cost and security, the team must stateful inspection at VPC perimeter. What is the recommended approach? stateful inspection at VPC perimeter.

Multiple choice — select one answer

Answer choices

  1. a. SSM Session Manager instead of bastion SSH
  2. b. AWS WAF with Bot Control
  3. c. AWS Network Firewall
  4. d. Network Firewall domain list rules

Architectural breakdown & explanation

Network Firewall filters L3-L4 and domain lists.

Correct answer(s): c. AWS Network Firewall

Exam domain: Domain 4: Network Security, Compliance, and Governance (24% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Advanced Networking – Specialty bank. Run a full timed practice exam with domain-weighted random questions in your browser.