SOA-C02 · Question #66
SOA-C02 Question #66: Real Exam Question with Answer & Explanation
Sign in or unlock SOA-C02 to reveal the answer and full explanation for question #66. The question stem and answer options stay visible for context.
Question
A company has an AWS Site-to-Site VPN connection between on-premises resources and resources that are hosted in a VPC. A SysOps administrator launches an Amazon EC2 instance that has only a private IP address into a private subnet in the VPC. The EC2 instance runs Microsoft Windows Server. A security group for the EC2 instance has rules that allow inbound traffic from the on-premises network over the VPN connection. The on-premises environment contains a third-party network firewall. Rules in the third-party network firewall allow Remote Desktop Protocol (RDP) traffic to flow between the on-premises users over the VPN connection. The on-premises users are unable to connect to the EC2 instance and receive a timeout error. What should the SysOps administrator do to troubleshoot this issue?
Options
- ACreate Amazon CloudWatch logs for the EC2 instance to check for blocked traffic.
- BCreate Amazon CloudWatch logs for the Site-to-Site VPN connection to check for blocked traffic.
- CCreate VPC flow logs for the EC2 instance's elastic network interface to check for rejected traffic.
- DInstruct users to use EC2 Instance Connect as a connection method.
Unlock SOA-C02 to see the answer
You've previewed enough free SOA-C02 questions. Unlock SOA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.