ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified DevOps Engineer - Professional DOP-C02 All Questions

View all questions & answers for the AWS Certified DevOps Engineer - Professional DOP-C02 exam
Go to Exam

Exam AWS Certified DevOps Engineer - Professional DOP-C02 topic 1 question 191 discussion

Exam question from Amazon's AWS Certified DevOps Engineer - Professional DOP-C02
Question #: 191
Topic #: 1
[All AWS Certified DevOps Engineer - Professional DOP-C02 Questions]

A company uses AWS WAF to protect its cloud infrastructure. A DevOps engineer needs to give an operations team the ability to analyze log messages from AWS WAF. The operations team needs to be able to create alarms for specific patterns in the log output.

Which solution will meet these requirements with the LEAST operational overhead?

  • A. Create an Amazon CloudWatch Logs log group. Configure the appropriate AWS WAF web ACL to send log messages to the log group. Instruct the operations team to create CloudWatch metric filters.
  • B. Create an Amazon OpenSearch Service cluster and appropriate indexes. Configure an Amazon Kinesis Data Firehose delivery stream to stream log data to the indexes. Use OpenSearch Dashboards to create filters and widgets.
  • C. Create an Amazon S3 bucket for the log output. Configure AWS WAF to send log outputs to the S3 bucket. Instruct the operations team to create AWS Lambda functions that detect each desired log message pattern. Configure the Lambda functions to publish to an Amazon Simple Notification Service (Amazon SNS) topic.
  • D. Create an Amazon S3 bucket for the log output. Configure AWS WAF to send log outputs to the S3 bucket. Use Amazon Athena to create an external table definition that fits the log message pattern. Instruct the operations team to write SQL queries and to create Amazon CloudWatch metric filters for the Athena queries.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by csG13 at Dec. 29, 2023, 10:29 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
GripZA
8 months, 3 weeks ago
Selected Answer: A
To send logs to Amazon CloudWatch Logs, you create a CloudWatch Logs log group. When you enable logging in AWS WAF, you provide the log group ARN. After you enable logging for your web ACL, AWS WAF delivers logs to the CloudWatch Logs log group in log streams. https://docs.aws.amazon.com/waf/latest/developerguide/logging-cw-logs.html
upvoted 1 times
...
c3518fc
1 year ago
Selected Answer: A
https://docs.aws.amazon.com/waf/latest/developerguide/logging-management.html
upvoted 4 times
...
dkp
1 year ago
Selected Answer: A
A & D can work, least operation overheard is A
upvoted 2 times
...
DanShone
1 year, 1 month ago
Selected Answer: A
LEAST operational overhead = A
upvoted 2 times
...
thanhnv142
1 year, 2 months ago
Selected Answer: D
D is correct: We have two tasks: collect log and analyze data. S3 bucket can store log and athena is for log analysis. A: This options does not mention of log analysis. Additionally, AWS WAF web ACL cannot send log to AWS logs group B: OpenSearch Service and Amazon Kinesis Data Firehose are used for other purposes. They are high-end features and cost a lots. C: Should not use lambda to analys log
upvoted 2 times
kiwtirApp
11 months, 2 weeks ago
You fail to notice that the question is asking about LEAST operational overhead. Therefore, it should be A.
upvoted 1 times
...
...
a54b16f
1 year, 3 months ago
Selected Answer: A
cloudwatch
upvoted 1 times
...
a54b16f
1 year, 3 months ago
Selected Answer: A
cloudwatch for WAF logging
upvoted 1 times
...
ozansenturk
1 year, 4 months ago
Selected Answer: A
https://docs.aws.amazon.com/waf/latest/developerguide/logging.html
upvoted 1 times
...
kabary
1 year, 4 months ago
Selected Answer: A
Answer is A based on the following AWS documentation: https://docs.aws.amazon.com/waf/latest/developerguide/web-acl-creating.html
upvoted 1 times
...
csG13
1 year, 4 months ago
Selected Answer: A
A seems to involve the least operational overhead
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago