Topic 1 Question 111
Your company requires the security and network engineering teams to identify all network anomalies within and across VPCs, internal traffic from VMs to VMs, traffic between end locations on the internet and VMs, and traffic between VMs to Google Cloud services in production. Which method should you use?
Define an organization policy constraint.
Configure packet mirroring policies.
Enable VPC Flow Logs on the subnet.
Monitor and analyze Cloud Audit Logs.
ユーザの投票
コメント(12)
I think the answer is (C).
VPC Flow Logs samples each VM's TCP, UDP, ICMP, ESP, and GRE flows. Both inbound and outbound flows are sampled. These flows can be between the VM and another VM, a host in your on-premises data center, a Google service, or a host on the internet. https://cloud.google.com/vpc/docs/flow-logs
👍 12Tabayashi2022/04/28B should be the answer. For detecting network anomalies, you need to have payload and header data as well to be effective. Besides C is saying to enable VPC flow logs on a subnet which won't serve our purpose either.
👍 5hybridpro2022/06/13- 正解だと思う選択肢: B
B. Configure packet mirroring policies.
👍 4AwesomeGCP2022/10/07
シャッフルモード
