A company has successfully migrated its on-premises virtual machines (VMs) to Amazon EC2 instances using a lift-and-shift approach. As part of their cloud optimization strategy, they intend to replace their existing load balancer software, which runs on EC2 instances, with AWS Elastic Load Balancers. To facilitate this transition, the security engineer is tasked with ensuring that all load balancer logs are centralized and searchable for auditing purposes. Additionally, the engineer must ensure that metrics are generated to monitor the ciphers in use. Which solution will effectively meet these logging and monitoring requirements?

Exam-Like

Create an Amazon CloudWatch Logs log group. Configure the load balancers to send logs to the log group. Use the CloudWatch Logs console to search the logs. Create CloudWatch Logs filters on the logs for the required metrics.

25.0%

Create an Amazon S3 bucket. Configure the load balancers to send logs to the S3 bucket. Use Amazon Athena to search the logs that are in the S3 bucket. Create Amazon CloudWatch filters on the S3 log files for the required metrics.

31.3%

Create an Amazon S3 bucket. Configure the load balancers to send logs to the S3 bucket. Use Amazon Athena to search the logs that are in the S3 bucket. Create Athena queries for the required metrics. Publish the metrics to Amazon CloudWatch.

31.3%

Create an Amazon CloudWatch Logs log group. Configure the load balancers to send logs to the log group. Use the AWS Management Console to search the logs. Create Amazon Athena queries for the required metrics. Publish the metrics to Amazon CloudWatch.

12.5%

AWS Certified Security - Specialty

Get started today

Comments