SAP-C02 Question #388: Real Exam Question with Answer & Explanation

Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #388. The question stem and answer options stay visible for context.

Submitted by helene.fr· Mar 6, 2026Continuous Improvement for Existing Solutions

Question

A company has VPC flow logs enabled for its NAT gateway. The company is seeing Action = ACCEPT for inbound traffic that comes from public IP address 198.51.100.2 destined for a private Amazon EC2 instance. A solutions architect must determine whether the traffic represents unsolicited inbound connections from the internet. The first two octets of the VPC CIDR block are 203.0. Which set of steps should the solutions architect take to meet these requirements?

Options

AOpen the AWS CloudTrail console. Select the log group that contains the NAT gateway's elastic
BOpen the Amazon CloudWatch console. Select the log group that contains the NAT gateway's
COpen the AWS CloudTrail console. Select the log group that contains the NAT gateway's elastic
DOpen the Amazon CloudWatch console. Select the log group that contains the NAT gateway's

Unlock SAP-C02 to see the answer

You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock SAP-C02 - $49.99 / 30 days Sign in

Full SAP-C02 Practice Browse All SAP-C02 Questions