Answer-first summary for fast verification
Answer: VPC flow logs, Firewall logs
VPC flow logs (A) and Firewall logs (B) are essential for monitoring network traffic to and from Compute Engine instances. VPC flow logs provide detailed information about the traffic flowing through your VPC, including the source and destination IP addresses, ports, and the protocol used. Firewall logs, on the other hand, record the decisions made by your firewall rules, allowing the Security team to monitor which traffic is allowed or denied. Together, these two products ensure that the Security team maintains visibility into the network traffic, which is crucial for security monitoring and compliance. Cloud Audit logs (C) are more about tracking administrative activities, Stackdriver Trace (D) is for application performance monitoring, and Compute Engine instance system logs (E) are for monitoring the operating system and software running on the instances, none of which directly provide the network traffic monitoring capabilities required by the Security team.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company is running low on network capacity for a critical application in your on-premises data center. You plan to migrate the application to Google Cloud Platform (GCP) while ensuring the Security team retains visibility into traffic to and from Compute Engine instances.
Which two products should you include in the solution? (Choose two.)
A
VPC flow logs
B
Firewall logs
C
Cloud Audit logs
D
Stackdriver Trace
E
Compute Engine instance system logs
No comments yet.