A company’s web application is running on Amazon EC2 instances behind an Application Load Balancer. The company recently changed its policy, which now requires the application to be accessed from one specific country only. Which configuration will meet this requirement?

• AConfigure the security group for the EC2 instances.
• BConfigure the security group on the Application Load Balancer.
• CConfigure AWS WAF on the Application Load Balancer in a VPC.
• DConfigure the network ACL for the subnet that contains the EC2 instances.