Answer-first summary for fast verification
Answer: Logging exclusion filters may be blocking the `vpc_flows` log.
The correct answer is D because logging exclusion filters can prevent specified logs, such as `vpc_flows`, from being recorded. It's essential to verify that no exclusion rules are discarding VPC Flow Logs. The other options are incorrect for the following reasons: Logging inclusion filters do not block logs; they only include logs that match certain criteria. Enabling VPC Flow Logs does not require specific configurations beyond turning them on. The service account associated with the instances does not play a role in the capture of VPC Flow Logs.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
As a member of the DevOps team overseeing applications in your company's production project, a recent security incident has led to a new requirement: monitoring all network traffic to and from Compute instances within the production VPCs. Despite enabling VPC Flow Logs on the production VPC, no vpc_flows logs appear in Cloud Logging. What could be the reason for this issue?
A
The service account for the instances lacks the necessary permissions.
B
Logging inclusion filters might be preventing the vpc_flows log from being recorded.
C
VPC Flow logs were set up incorrectly.
D
Logging exclusion filters may be blocking the vpc_flows log.
No comments yet.