AWS Certified DevOps Engineer - Professional
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A company operating on AWS has established a VPC housing essential compute resources with consistent traffic patterns. They have set up VPC flow logs to be sent to a log group within Amazon CloudWatch Logs. The DevOps team is tasked with implementing a monitoring system for these VPC flow logs to detect network traffic anomalies over time. In the event that an anomaly is detected, the team must be able to trigger a response. What is the appropriate configuration for the monitoring solution to fulfill these requirements?
Explanation:
The correct answer is A. The solution involves using an Amazon Kinesis data stream to which the log group is subscribed. Amazon Kinesis Data Analytics is used to detect anomalies in the data stream, which is highly effective for real-time processing of streaming data and identifying anomalies. An AWS Lambda function is then used to handle anomaly findings and write them to the default Amazon EventBridge event bus, enabling further automated responses or alerts. This approach provides a robust and scalable solution for monitoring and responding to network traffic anomalies.