Crucial Exams

AWS Certified CloudOps Engineer Associate SOA-C03 Practice Question

A company runs an internal HTTP API on several EC2 instances in a private subnet. Clients in multiple branch offices reach the API through an AWS Site-to-Site VPN that terminates on a virtual private gateway (VGW). Users report that some requests now take more than 3 seconds, but the problem is intermittent and hard to reproduce. As the CloudOps engineer, you must create a near-real-time dashboard that helps network engineers pinpoint whether the latency originates on-premises or inside AWS. Which solution meets the requirement with the LEAST operational overhead?

  • Turn on detailed monitoring for the VPN connection and add the TunnelDataIn and TunnelDataOut metrics to a CloudWatch dashboard.

  • Install the Amazon CloudWatch agent on each EC2 instance, enable the netstat plug-in, and create a dashboard from the collected metrics.

  • Enable VPC Flow Logs with a custom format that includes the start and end fields, stream the logs to CloudWatch Logs, create a Logs Insights query that calculates average and p99 latency (end - start) by source IP, and add the query results to a CloudWatch dashboard.

  • Deploy AWS Internet Monitor, attach the VPN connection as a monitored resource, and display the internet performance panel on a CloudWatch dashboard.

AWS Certified CloudOps Engineer Associate SOA-C03
Networking and Content Delivery
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot