Topic 1 Question 146
You suspect that one of the virtual machines (VMs) in your default Virtual Private Cloud (VPC) is under a denial-of-service attack. You need to analyze the incoming traffic for the VM to understand where the traffic is coming from. What should you do?
Enable Data Access audit logs of the VPC. Analyze the logs and get the source IP addresses from the subnetworks.get field.
Enable VPC Flow Logs for the subnet. Analyze the logs and get the source IP addresses from the connection field.
Enable VPC Flow Logs for the VPAnalyze the logs and get the source IP addresses from the src_location field.
Enable Data Access audit logs of the subnet. Analyze the logs and get the source IP addresses from the networks.get field.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: B
I think B is correct, enable vpc flow on subnet.
A and D is wrong, there Audit is to check configuration change.
👍 7ccieman20162022/12/04 - 正解だと思う選択肢: B
b is right. record network flows sent from and received by VM instances, the best approach would be to use VPC Flow Logs feature. If enabled for a subnet, VPC flow logs collect data from all VM instances in that subnet. c - can't to find information about VPAnalyze
👍 2nosense2022/12/15 • B. Enable VPC Flow Logs for the ***** subnet. Analyze the logs and get the source IP addresses from the connection field.
👍 1pk3492023/01/14
シャッフルモード