Answer-first summary for fast verification
Answer: Create a new flow log that includes the pkt-dstaddr field to capture the original destination IP address of the traffic.
To capture traffic flow for the second IP address of the EC2 instance, the network engineer needs to ensure that the flow logs include the destination IP address of the traffic. The 'pkt-dstaddr' field in VPC flow logs captures the original destination IP address of the traffic, which is necessary to identify traffic sent to the second IP address. The 'dstaddr' field captures the destination IP address after any NAT translation, which may not be useful in this scenario. The 'pkt-srcaddr' and 'srcaddr' fields capture the source IP address of the traffic, which is not relevant for identifying traffic to the second IP address. Therefore, creating a new flow log that includes the 'pkt-dstaddr' field is the correct approach.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
How can the network engineer identify traffic flows directed to the secondary IP address of an Amazon EC2 instance, given that VPC flow logs are enabled but only logging traffic for the primary IP address?
A
Create a new flow log that includes the pkt-dstaddr field to capture the original destination IP address of the traffic.
B
Create a new flow log that includes the dstaddr field to capture the original destination IP address of the traffic.
C
Create a new flow log that includes the pkt-srcaddr field to capture the original destination IP address of the traffic.
D
Create a new flow log that includes the srcaddr field to capture the original destination IP address of the traffic.