Google Cloud Professional Cloud Network Engineer — Question 47
Your company is running out of network capacity to run a critical application in the on-premises data center. You want to migrate the application to GCP. You also want to ensure that the Security team does not lose their ability to monitor traffic to and from Compute Engine instances.
Which two products should you incorporate into the solution? (Choose two.)
Answer options
- A. VPC flow logs
- B. Firewall logs
- C. Cloud Audit logs
- D. Stackdriver Trace
- E. Compute Engine instance system logs
Correct answer: A, B
Explanation
VPC flow logs provide detailed information about the traffic to and from the Compute Engine instances, allowing the Security team to monitor network activity effectively. Firewall logs also capture information about allowed and denied traffic, which is crucial for maintaining security during the migration. The other options do not specifically focus on monitoring network traffic in the same manner as VPC flow logs and Firewall logs.