A company is setting a centralized logging solution on AWS and has several requirements. The company wants its Amazon CloudWatch Logs and VPC Flow logs to come from different sub accounts and to be delivered to a single auditing account. However, the number of sub accounts keeps changing. The company also needs to index the logs in the auditing account to gather actionable insight. How should a DevOps Engineer implement the solution to meet all of the company's requirements?

• A.Use AWS Lambda to write logs to Amazon ES in the auditing account Create an Amazon CloudWatch subscription filter and use Amazon Kinesis Data Streams in the sub accounts to stream the logs to the Lambda function deployment in the auditing account.
• B.Use Amazon Kinesis Streams to write logs to Amazon ES in the auditing account. Create a CloudWatch subscription filter and use Kinesis Data Streams in the sub accounts to stream the logs to the Kinesis stream in the auditing account.
• C.Use Amazon Kinesis Firehose with Kinesis Data Streams to write logs to Amazon ES in the auditing account. Create a CloudWatch subscription filter and stream logs from sub accounts to the Kinesis stream in the auditing account.
• D.Use AWS Lambda to write logs to Amazon ES in the auditing account. Create a CloudWatch subscription filter and use Lambda in the sub accounts to stream the logs to the Lambda function deployed in the auditing account.

Comment: *

Name: *

Email: *

Verification: *

A company has built a web service that runs on Amazon EC2 instances behind an Application Load Balancer (ALB) the company has deployed the application in us-east-1 Amazon Route 53 provides an external DNS that routes traffic from example.com to the application, created with appropriate health checks.
The company has deployed a second environment for the application in eu-west-1 the company wants traffic to be routed to whichever environment results m the best response time for each user. If there is an outage in one Region, traffic should be directed to the other environment.
Which configuration will achieve this requirements?

• A.A subdomain us.example.com with failover routing the US ALB as primary and the EU ALB as secondary Another subdomain eu.example.com with failover routing the EU ALB as primary and the US ALB as secondary Latency-based routing records for example com that are aliased to us example com and eu.example.com
• B.A subdomain us example com with weighted routing the US ALB with weight 2 and the EU ALB with weight 1 Another subdomain eu.example.com with weighted routing the EU ALB with weight 2 and the US ALU with weight 1 Geolocation routing records for example.com North America aliased to us example.com and Europe aliased to eu.example.com
• C.A subdomain us.example.com with multivalue answer routing. the US ALB as first and the EU ALB as second Another subdomain eu.example.com with failover routing the EU ALB as first and the US ALB as second Failover routing records for example.com that are aliased to us.example.com and eu.example.com
• D.A subdomain us example com with latency-based routing the US ALB as the first target and the EU ALB as the second target.
  Another subdomain eu.example.com with latency-based routing. The EU ALB as the first target and the US ALB as the second target.
  Failover routing records for example.com aliased to us.example.com as the first target and eu.example.com as the second target.

Comment: *

Name: *

Email: *

Verification: *

A DevOps engineer has automated a web service deployment using AWS CodePipelme with the following steps:
* An AWS CodeBuild project compiles the deployment artifact and runs unit tests.
* An AWS CodeDeploy deployment group deploys the web service to Amazon EC2 instances in the staging environment.
* A CodeDeploy deployment group deploys the web service to EC2 instances in the production environment
The quality assurance (QA) team has asked for permission to inspect the build artifact before the deployment to the production environment occurs. The OA team wants to run an internal automated penetration testing tool (invoked using a REST API call) to run some manual tests.
Which combination of actions will fulfill this request? (Select TWO.)

• A.Update the pipeline to invoke a Lambda function that triggers the REST API for the automated penetration testing tool.
• B.Modify the buildspec.yml file for the compilation stage to require manual approval before completion.
• C.Insert a manual approval action between the test and deployment actions of Jtue pipeline.
• D.Update the CodeDeploy deployment group so it requires manual approval to proceed
• E.Update the pipeline to directly trigger the REST API for the automated penetration testing tool.

Comment: *

Name: *

Email: *

Verification: *

You are using Jenkins as your continuous integration systems for the application hosted in AWS. The builds are then placed on newly launched EC2 Instances. You want to ensure that the overall cost of the entire continuous integration and deployment pipeline is minimized. Which of the below options would meet these requirements? Choose 2 answers from the options given below

• A.Ensurethat all build tests are conducted using Jenkins before deploying the build tonewly launched EC2 Instances.
• B.Ensurethat all build tests are conducted on the newly launched EC2 Instances.
• C.Ensurethe Instances are launched only when the build tests are completed.
• D.Ensurethe Instances are created beforehand for faster turnaround time for theapplication builds to be placed.

Comment: *

Name: *

Email: *

Verification: *

You have just recently deployed an application on EC2 instances behind an ELB. After a couple of weeks, customers are complaining on receiving errors from the application. You want to diagnose the errors and are trying to get errors from the ELB access logs. But the ELB access logs are empty. What is the reason for this.

• A.You do not have the appropriate permissions to access the logs
• B.You do not have your CloudWatch metrics correctly configured
• C.ELB Access logs are only available for a maximum of one week.
• D.Access logging is an optional feature of Elastic Load Balancing that is disabled by default

Comment: *

Name: *

Email: *

Verification: *