AWS Certified SysOps Administrator – Associate (legacy) — Question 537

An application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The instances run in an Auto Scaling group across multiple Availability
Zones. The Information Security team wants to track application requests by the originating IP and the EC2 instance that processes the request.
Which of the following tools or services provides this information?

Answer options

• A. Amazon CloudWatch
• B. AWS CloudTrail
• C. Elastic Load Balancing access logs
• D. VPC Flow Logs

Correct answer: C

Explanation

Elastic Load Balancing access logs capture detailed information about requests sent to the ALB, including the client's originating IP address and the specific backend EC2 instance ID that processed the request. VPC Flow Logs only capture network interface traffic and do not provide details about application-level requests or which instance handled them. AWS CloudTrail and Amazon CloudWatch monitor API calls and resource metrics/logs respectively, rather than mapping individual HTTP/HTTPS client requests to target instances.