New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Professional Cloud Network Engineer Exam - Topic 6 Question 111 Discussion

Actual exam question for Google's Professional Cloud Network Engineer exam
Question #: 111
Topic #: 6
[All Professional Cloud Network Engineer Questions]

Your company's security team wants to limit the type of inbound traffic that can reach your web servers to protect against security threats. You need to configure the firewall rules on the web servers within your Virtual Private Cloud (VPC) to handle HTTP and HTTPS web traffic for TCP only. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Yuonne at Aug 12, 2025, 05:24 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Network Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Rex
2 months ago
Just to clarify, does this mean all IPs can access the web server?
upvoted 0 times
...
Tammara
3 months ago
Wait, why are we allowing TCP port 60? That seems off.
upvoted 0 times
...
Chuck
3 months ago
I disagree, option A is too limited. We need 443 too!
upvoted 0 times
...
Elfriede
3 months ago
Option C is the right choice! It covers both HTTP and HTTPS.
upvoted 0 times
...
Albina
3 months ago
Totally agree with C, it’s the best way to secure the servers.
upvoted 0 times
...
Justine
3 months ago
I definitely recall that we should be using TCP for web traffic, but I can't remember if we should allow all IPs or restrict it somehow. I hope I chose the right option!
upvoted 0 times
...
Emogene
4 months ago
I'm a bit confused about the difference between ingress and egress rules. I thought we only needed to allow incoming traffic, so why would we consider egress options?
upvoted 0 times
...
Wenona
4 months ago
I remember practicing a similar question where we had to allow both HTTP and HTTPS. I feel like option C might be the right choice since it covers both ports.
upvoted 0 times
...
Dominga
4 months ago
I think we need to focus on ingress rules since we're controlling incoming traffic, right? But I'm not sure if it's just for port 80 or if we need to include 443 as well.
upvoted 0 times
...
Gail
4 months ago
I'm a little unsure about this one. The wording is a bit tricky. I'm leaning towards C, but I'm not 100% confident. Might need to re-read the question a few times.
upvoted 0 times
...
Marge
5 months ago
I'm pretty sure the answer is C. The question specifically says we need to handle HTTP and HTTPS web traffic, and the ingress rule with the 'web-server' target tag is the best way to do that.
upvoted 0 times
...
Daniela
5 months ago
Okay, let me think this through. We need to allow HTTP and HTTPS traffic, so that means we need to open ports 80 and 443. And since it's inbound traffic, we'll need an ingress rule. I'm going with C.
upvoted 0 times
...
Stacey
5 months ago
Hmm, I'm a bit confused. Do we need to create an ingress or egress rule? And should we be allowing all IP addresses or just the web server IP addresses?
upvoted 0 times
...
Mayra
5 months ago
This looks pretty straightforward. I think the answer is C - create an allow on match ingress firewall rule with the target tag 'web-server' to allow all IP addresses for TCP ports 80 and 443.
upvoted 0 times
...

Save Cancel