Amazon Exam SCS-C01 Topic 6 Question 34 Discussion

Actual exam question for Amazon's SCS-C01 exam

Question #: 34
Topic #: 6

A company deployed Amazon GuardDuty In the us-east-1 Region. The company wants all DNS logs that relate to the company's Amazon EC2 instances to be inspected. What should a security engineer do to ensure that the EC2 instances are logged?

AUse IPv6 addresses that are configured for hostnames.

BConfigure external DNS resolvers as internal resolvers that are visible only to AWS.

CUse AWS DNS resolvers for all EC2 instances.

DConfigure a third-party DNS resolver with logging for all EC2 instances.

Show Suggested Answer

Suggested Answer: C

by Margart at Nov 16, 2022, 09:34 PM

Limited Time Offer

25%

Off

Get Premium SCS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!