AWS Certified SysOps Administrator – Associate — Question 39

A SysOps administrator is reviewing VPC Flow Logs to troubleshoot connectivity issues in a VPC. While reviewing the logs, the SysOps administrator notices that rejected traffic is not listed.

What should the SysOps administrator do to ensure that all traffic is logged?

Answer options

• A. Create a new flow log that has a filter setting to capture all traffic.
• B. Create a new flow log. Set the log record format to a custom format. Select the proper fields to include in the log.
• C. Edit the existing flow log. Change the filter setting to capture all traffic.
• D. Edit the existing flow log. Set the log record format to a custom format. Select the proper fields to include in the log.

Correct answer: A

Explanation

The correct answer is A because creating a new flow log with a filter setting to capture all traffic ensures that both accepted and rejected traffic are logged. Options B and D focus on changing the log format or fields without addressing the filter setting, while option C suggests modifying the existing log but does not create a new log or guarantee that all traffic, especially rejected traffic, will be captured.