Google Exam Professional-Cloud-Network-Engineer Topic 7 Question 46 Discussion

Actual exam question for Google's Professional Cloud Network Engineer exam

Question #: 46
Topic #: 7

[All Professional Cloud Network Engineer Questions]

You are using a third-party next-generation firewall to inspect traffic. You created a custom route of 0.0.0.0/0 to route egress traffic to the firewall. You want to allow your VPC instances without public IP addresses to access the BigQuery and Cloud Pub/Sub APIs, without sending the traffic through the firewall.

Which two actions should you take? (Choose two.)

ATurn on Private Google Access at the subnet level.

BTurn on Private Google Access at the VPC level.

CTurn on Private Services Access at the VPC level.

DCreate a set of custom static routes to send traffic to the external IP addresses of Google APIs and services via the default internet gateway.

ECreate a set of custom static routes to send traffic to the internal IP addresses of Google APIs and services via the default internet gateway.

Show Suggested Answer

Suggested Answer: A, D

https://cloud.google.com/vpc/docs/private-access-options#pga Private Google Access VM instances that only have internal IP addresses (no external IP addresses) can use Private Google Access. They can reach the _external IP addresses_ of Google APIs and services.

by Taryn at May 03, 2022, 01:13 PM

Limited Time Offer

25%

Off

Get Premium Professional-Cloud-Network-Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!