Answer-first summary for fast verification
Answer: Create a new flow log that includes the pkt-dstaddr field to capture the original destination IP address of the traffic.
To locate the traffic flow for the second IP address of the EC2 instance, the network engineer needs to capture the original destination IP address of the traffic. The correct field to include in a new flow log for this purpose is the 'pkt-dstaddr' field. This field captures the original destination IP address of the traffic, which would include traffic sent to the second IP address of the EC2 instance. The 'dstaddr' field captures the destination IP address after any NAT translation, which may not accurately reflect traffic sent to the second IP address if NAT is involved. The 'pkt-srcaddr' and 'srcaddr' fields are related to the source IP address of the traffic, not the destination, and thus are not relevant for this specific requirement.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How can the network engineer identify traffic flows directed to the secondary IP address of an Amazon EC2 instance, given that VPC flow logs are enabled but only logging traffic for the primary IP address?
A
Create a new flow log that includes the pkt-dstaddr field to capture the original destination IP address of the traffic.
B
Create a new flow log that includes the dstaddr field to capture the original destination IP address of the traffic.
C
Create a new flow log that includes the pkt-srcaddr field to capture the original destination IP address of the traffic.
D
Create a new flow log that includes the srcaddr field to capture the original destination IP address of the traffic.
No comments yet.