Google Professional Cloud DevOps Engineer
Get started today
Ultimate access to all questions.
As a member of the DevOps team overseeing applications in your company's production project, a recent security incident has led to a new requirement: monitoring all network traffic to and from Compute instances within the production VPCs. Despite enabling VPC Flow Logs on the production VPC, no vpc_flows logs appear in Cloud Logging. What could be the reason for this issue?
As a member of the DevOps team overseeing applications in your company's production project, a recent security incident has led to a new requirement: monitoring all network traffic to and from Compute instances within the production VPCs. Despite enabling VPC Flow Logs on the production VPC, no vpc_flows logs appear in Cloud Logging. What could be the reason for this issue?
Explanation:
The correct answer is D because logging exclusion filters can prevent specified logs, such as vpc_flows, from being recorded. It's essential to verify that no exclusion rules are discarding VPC Flow Logs. The other options are incorrect for the following reasons: Logging inclusion filters do not block logs; they only include logs that match certain criteria. Enabling VPC Flow Logs does not require specific configurations beyond turning them on. The service account associated with the instances does not play a role in the capture of VPC Flow Logs.