Google Professional Cloud DevOps Engineer
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
As a member of the DevOps team overseeing applications in your company's production project, a recent security incident has led to a new mandate: monitoring all network traffic to and from Compute instances within the production VPCs. Despite enabling VPC Flow Logs on the production VPC, no vpc_flows logs appear in Cloud Logging. What could be the underlying issue?
Explanation:
Option A is incorrect because the service account of the instances does not play a role in capturing VPC Flow Logs. Option C is incorrect as no specific configuration is required to enable VPC Flow Logs. Option D is incorrect since logging inclusion filters do not block any logs from being sent. Option B is correct because logging exclusion filters can block specified logs, including VPC Flow Logs. Ensure there are no exclusion rules that might be discarding these logs. Reference: Google Cloud VPC Flow Logs Documentation.