a. Flow logs do not capture traffic to and from 169.254.169.254 for instance metadata.
VPC flow logs do not capture metadata traffic to the instance metadata IP address (169.254.169.254), which is used for instance metadata queries.
b. Flow logs do not capture DHCP traffic.
DHCP traffic is not captured by VPC flow logs, as they exclude certain types of traffic such as DHCP and traffic to the Amazon DNS server.
d. Flow logs can be used as a security tool to monitor the traffic that is reaching the instance.
VPC flow logs are useful for security monitoring, allowing administrators to see accepted and rejected traffic at the instance level and diagnose potential security issues.
The other options are incorrect:
c. VPC flow logs do not capture traffic to the reserved IP address of the default VPC router.
e. Flow logs do not capture real-time log streams. Instead, they capture data asynchronously, which may not be in real-time.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
myrmidon3
2 months, 4 weeks agoSpawni81
5 months agothe_giant
5 months, 2 weeks ago