Amazon Exam ANS-C01 Topic 2 Question 52 Discussion

Actual exam question for Amazon's ANS-C01 exam

Question #: 52
Topic #: 2

A company wants to analyze TCP traffic to the internet. The traffic originates from Amazon EC2 instances in the company's VPC. The EC2 instances initiate connections through a NAT gateway. The required information includes source and destination IP addresses, ports, and the first 8 bytes of payload of TCP segments. The company needs to collect, store, and analyze all the required data points.

Which solution will meet these requirements?

ASet up the EC2 instances as VPC traffic mirror sources. Deploy software on the traffic mirror target to forward the data to Amazon CloudWatch Logs. Analyze the data by using CloudWatch Logs Insights.

BSet up the NAT gateway as a VPC traffic mirror source. Deploy software on the traffic mirror target to forward the data to an Amazon OpenSearch Service cluster. Analyze the data by using OpenSearch Dashboards.

CTurn on VPC Flow Logs on the EC2 instances. Specify the default format and a log destination of Amazon CloudWatch Logs. Analyze the flow log data by using CloudWatch Logs Insights.

DTurn on VPC Flow Logs on the EC2 instances. Specify a custom format and a log destination of Amazon S3. Analyze the flow log data by using Amazon Athena.

Show Suggested Answer

Suggested Answer: A

by Yasuko at Jul 09, 2025, 11:27 AM

Limited Time Offer

25%

Off

Get Premium ANS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Eladia

6 days ago

I agree with Alysa. Setting up EC2 instances as VPC traffic mirror sources seems like the most efficient way to collect the required data.

upvoted 0 times

...

Maybelle

6 days ago

Option B seems like the best choice here. Capturing the traffic at the NAT gateway and forwarding it to an OpenSearch cluster sounds like a solid plan.

upvoted 0 times

...

Alysa

8 days ago

I think option A is the best solution.

upvoted 0 times

...