Answer-first summary for fast verification
Answer: Use Packet Mirroring to mirror traffic to and from particular VM instances. Perform inspection using security software that analyzes the mirrored traffic.
Packet Mirroring is the correct solution because it captures complete packet data including headers and payloads, which is essential for inspecting IP packet content for invalid or malicious material. The community discussion shows 100% consensus on option A with multiple upvoted comments citing Google Cloud documentation that confirms Packet Mirroring clones all traffic and packet data for examination. Option B (VPC Flow Logs) only provides metadata about traffic flows without packet payloads. Option C (Fluentd agent) focuses on application logs rather than network packet inspection. Option D (Google Cloud Armor) is for web application firewall protection and doesn't provide packet-level inspection capabilities.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You need to inspect IP packet data for invalid or malicious content. Which Google Cloud service should you use?
A
Use Packet Mirroring to mirror traffic to and from particular VM instances. Perform inspection using security software that analyzes the mirrored traffic.
B
Enable VPC Flow Logs for all subnets in the VPC. Perform inspection on the Flow Logs data using Cloud Logging.
C
Configure the Fluentd agent on each VM Instance within the VPC. Perform inspection on the log data using Cloud Logging.
D
Configure Google Cloud Armor access logs to perform inspection on the log data.