A web application is experiencing SQL injection attempts that are reaching an Amazon RDS backend through an Application Load Balancer. The team wants to block malicious requests before they hit the application without changing application code. Which service should be added?

Pick an option to reveal the answer.