AWS Certified Cloud Practitioner — Question 876

Which AWS service or tool can be used to capture information about inbound and outbound traffic in an Amazon VPC?

Answer options

• A. VPC Flow Logs
• B. Amazon Inspector
• C. VPC endpoint services
• D. NAT gateway

Correct answer: A

Explanation

VPC Flow Logs is the specific AWS feature designed to capture and log IP traffic details for network interfaces within a VPC. Amazon Inspector is used for automated security assessments and vulnerability scanning, while VPC endpoint services and NAT gateways facilitate private connectivity and outbound internet access, respectively, rather than traffic logging.