A company has a VPC with several Amazon EC2 instances behind a NAT gateway. The company's security policy states that all network traffic must be logged and must include the original source and destination IP addresses. The existing VPC Flow Logs do not include this information. A security engineer needs to recommend a solution. Which combination of steps should the security engineer recommend? (Choose two.)
A) Edit the existing VPC Flow Logs. Change the log format of the VPC Flow Logs from the Amazon default format to a custom format.
B) Delete and recreate the existing VPC Flow Logs. Change the log format of the VPC Flow Logs from the Amazon default format to a custom format.
C) Change the destination to Amazon CloudWatch Logs.
D) Include the pkt-srcaddr and pkt-dstaddr fields in the log format.
E) Include the subnet-id and instance-id fields in the log format.
Correct Answer:
Verified
Q194: A security engineer is designing an incident
Q195: A company wants to deploy an application
Q196: A security engineer is responsible for providing
Q197: A company wants to encrypt data locally
Q198: A security engineer needs to ensure their
Q200: A company's security officer is concerned about
Q201: A company uses an AWS Key Management
Q202: A global company must mitigate and respond
Q203: A Software Engineer wrote a customized reporting
Q204: A company recently experienced a DDoS attack
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents