Answer-first summary for fast verification
Answer: Enable VPC flow logs on the NAT gateway's elastic network interface. Publish the logs to a log group in Amazon CloudWatch Logs. Use CloudWatch Logs Insights to query and analyze the logs., Enable NAT gateway access logs. Publish the logs to a log group in Amazon CloudWatch Logs. Use CloudWatch Logs Insights to query and analyze the logs.
To investigate the traffic through the NAT gateway, the network engineer can use VPC flow logs and NAT gateway access logs. VPC flow logs capture information about the IP traffic going to and from network interfaces in your VPC, including the NAT gateway's elastic network interface. Publishing these logs to Amazon CloudWatch Logs allows for querying and analysis using CloudWatch Logs Insights, making option A correct. NAT gateway access logs provide detailed information about the traffic that passes through the NAT gateway, including source and destination IP addresses, ports, and the number of bytes transferred. Publishing these logs to Amazon CloudWatch Logs also allows for querying and analysis using CloudWatch Logs Insights, making option B correct. Options C, D, and E are not correct because Traffic Mirroring is not applicable for NAT gateways, and while publishing logs to an Amazon S3 bucket and using Amazon Athena for analysis is possible, it is not the most direct method for investigating NAT gateway traffic compared to using CloudWatch Logs Insights.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Which methods can the network engineer utilize to identify the origin of the increased traffic passing through the NAT gateway? (Select two.)
A
Enable VPC flow logs on the NAT gateway's elastic network interface. Publish the logs to a log group in Amazon CloudWatch Logs. Use CloudWatch Logs Insights to query and analyze the logs.
B
Enable NAT gateway access logs. Publish the logs to a log group in Amazon CloudWatch Logs. Use CloudWatch Logs Insights to query and analyze the logs.
C
Configure Traffic Mirroring on the NAT gateway's elastic network interface. Send the traffic to an additional EC2 instance. Use tools such as tcpdump and Wireshark to query and analyze the mirrored traffic.
D
Enable VPC flow logs on the NAT gateway's elastic network interface. Publish the logs to an Amazon S3 bucket. Create a custom table for the S3 bucket in Amazon Athena to describe the log structure. Use Athena to query and analyze the logs.
E
Enable NAT gateway access logs. Publish the logs to an Amazon S3 bucket. Create a custom table for the S3 bucket in Amazon Athena to describe the log structure. Use Athena to query and analyze the logs.