AWS Certified Developer - Associate
Get started today
Ultimate access to all questions.
A developer uses a BGP-based AWS VPN to connect on-premises to EC2 instances within the same VPC. The developer can access an instance in subnet A but not in subnet B. What logs should be reviewed to check traffic reaching subnet B?
A developer uses a BGP-based AWS VPN to connect on-premises to EC2 instances within the same VPC. The developer can access an instance in subnet A but not in subnet B. What logs should be reviewed to check traffic reaching subnet B?
Explanation:
The correct answer is C. VPC Flow Logs. VPC Flow Logs capture information about the IP traffic going to and from network interfaces in a VPC, including traffic via a VPN connection. These logs can help monitor and troubleshoot connectivity issues, such as verifying if traffic is reaching a particular subnet within the VPC. VPN logs, BGP logs, and AWS CloudTrail logs do not provide the necessary granular traffic information needed for this specific troubleshooting scenario.