The platform team at DataCorp is building a centralized logging service on EC2, using PrivateLink to gather logs from numerous AWS accounts, but clients can't submit logs through the VPC endpoint. Which combination of steps should a solutions architect take to resolve this issue? (Choose two.)