ExpertEasy1 markMultiple Choice
AWS SAP-C02 · Question 74 · Domain 3.1: Operational Excellence
An enterprise is using AWS Transit Gateway to connect 50 VPCs. They want to monitor the network traffic flowing between specific VPCs to identify potential security threats and performance bottlenecks. Which feature should they enable?
An enterprise is using AWS Transit Gateway to connect 50 VPCs. They want to monitor the network traffic flowing between specific VPCs to identify potential security threats and performance bottlenecks. Which feature should they enable?
Answer options:
A.
VPC Flow Logs on the Transit Gateway ENIs.
B.
Transit Gateway Flow Logs
C.
AWS CloudTrail
D.
Amazon GuardDuty
How to approach this question
Identify the logging feature specific to Transit Gateway.
Full Answer
B.Transit Gateway Flow Logs✓ Correct
AWS Transit Gateway Flow Logs enable you to capture information about the IP traffic routed through your Transit Gateway, providing visibility into inter-VPC traffic.
Common mistakes
Assuming VPC Flow Logs cover the TGW routing logic comprehensively.
Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 2
75 questions · hints · full answers · grading
More questions from this exam
Q01A company is setting up a multi-account AWS environment using AWS Organizations. They need to ens...EasyQ02An enterprise needs to connect its on-premises data center to AWS. They require a dedicated, priv...EasyQ03A company wants to share a single AWS Transit Gateway across multiple AWS accounts within their A...EasyQ04An architect needs to design a highly available database architecture that spans multiple AWS Reg...EasyQ05A global financial institution is migrating its core banking application to AWS. The application ...Medium