FCP – FortiWAN and Cloud Security Administrator 7.4 — Question 13

Which three statements are correct about VPC flow logs? (Choose three.)

Answer options

• A. Flow logs do not capture traffic to and from 169.254.169.254 for instance metadata.
• B. Flow logs do not capture DHCP traffic.
• C. Flow logs can capture traffic to the reserved IP address for the default VPC router.
• D. Flow logs can be used as a security tool to monitor the traffic that is reaching the instance.
• E. Flow logs can capture real-time log streams for the network interfaces.

Correct answer: A, B, D

Explanation

Option A is correct because VPC flow logs specifically omit traffic to the instance metadata IP. Option B is also accurate, as DHCP traffic is not captured by flow logs. Option D is correct since flow logs can be utilized to monitor incoming traffic for security purposes. Options C and E are incorrect because flow logs do not capture reserved IP traffic or provide real-time log streams for network interfaces.