Answer-first summary for fast verification
Answer: Logging exclusion filters might be preventing the vpc_flows log from being recorded.
Option A is incorrect because the service account of the instances does not play a role in capturing VPC Flow Logs. Option C is incorrect as no specific configuration is required to enable VPC Flow Logs. Option D is incorrect since logging inclusion filters do not block any logs from being sent. Option B is correct because logging exclusion filters can block specified logs, including VPC Flow Logs. Ensure there are no exclusion rules that might be discarding these logs. Reference: [Google Cloud VPC Flow Logs Documentation](https://cloud.google.com/vpc/docs/using-flow-logs#no-vpc-flows).
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
As a member of the DevOps team overseeing applications in your company's production project, a recent security incident has led to a new mandate: monitoring all network traffic to and from Compute instances within the production VPCs. Despite enabling VPC Flow Logs on the production VPC, no vpc_flows logs appear in Cloud Logging. What could be the underlying issue?
A
The service account for the instances lacks the necessary permissions.
B
Logging exclusion filters might be preventing the vpc_flows log from being recorded.
C
VPC Flow logs were set up incorrectly.
D
Logging inclusion filters could be obstructing the vpc_flows log.
No comments yet.