VPC ELB and flow logs Flashcards by erik MOLNAR

Q

To use an ELB in a custom VPC…

A

…you need two public subnets to make it highly available

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

you cannot enable flow logs for vpcs thatare peered with your VPC unless the peer VPC is in your account

A

t

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

can flow logs be tagged?

A

yes

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

after you’ve created a flow log, you can’t change its configuration.

for example, you can’t associate a different IAM role with the flow log.

A

t

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

THe following IP traffoc is not monitored by flow logss:

traffic generated by instances when they contact the DNS server. if you use your own DNS serve,r then all traffic to that DNS server is logged.

traffic generated by a windows instance for amazon windows license activation
traffic to and from 169.254.169.254 for instance metadata
dhcp traffic

A

yes

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly