ANS-C01 · Question #275
ANS-C01 Question #275: Real Exam Question with Answer & Explanation
The correct answer is D: Enable access logs on the ALB. Store the logs in an Amazon S3 bucket. Query the logs in the S3. ALB Access Logs: Enabling access logs on the ALB provides detailed information about incoming requests, including server response codes, request paths, latency, and client IP addresses. These logs are specifically designed to capture the required application access data. S3 for S
Question
A company hosts an application on Amazon EC2 instances behind an Application Load Balancer (ALB). The instances are part of an Amazon EC2 Auto Scaling group. To comply with new security standards, the company must capture all application access data, including server response codes, request paths, latency, and client IP addresses. The company also needs to query the captured data for performance analysis. Which solution will meet these requirements?
Options
- AEnable VPC flow logs on the ALB subnets. Store the logs to an Amazon S3 bucket. Query the
- BConfigure Amazon VPC Traffic Mirroring on all EC2 elastic network interfaces. Deploy a third-
- CConfigure Amazon CloudWatch detailed monitoring on the EC2 instances Include all available
- DEnable access logs on the ALB. Store the logs in an Amazon S3 bucket. Query the logs in the S3
Explanation
ALB Access Logs: Enabling access logs on the ALB provides detailed information about incoming requests, including server response codes, request paths, latency, and client IP addresses. These logs are specifically designed to capture the required application access data. S3 for Storage: The logs are stored in Amazon S3, providing a cost-effective and scalable solution for retaining the data. Athena for Querying: Amazon Athena can be used to query the data directly from the S3 bucket without the need to move or transform the data, making it efficient for performance analysis.
Community Discussion
No community discussion yet for this question.