Free Google Associate Cloud Engineer Exam Braindumps (page: 34)

Page 33 of 74

Your Dataproc cluster runs in a single Virtual Private Cloud (VPC) network in a single subnet with range 172.16.20.128/25. There are no private IP addresses available in the VPC network. You want to add new VMs to communicate with your cluster using the minimum number of steps.
What should you do?

  1. Modify the existing subnet range to 172.16.20.0/24.
  2. Create a new Secondary IP Range in the VPC and configure the VMs to use that range.
  3. Create a new VPC network for the VMs. Enable VPC Peering between the VMs' VPC network and the Dataproc cluster VPC network.
  4. Create a new VPC network for the VMs with a subnet of 172.32.0.0/16. Enable VPC network Peering between the Dataproc VPC network and the VMs VPC network. Configure a custom Route exchange.

Answer(s): A

Explanation:

/25:
CIDR to IP Range
Result
CIDR Range 172.16.20.128/25
Netmask 255.255.255.128
Wildcard Bits 0.0.0.127
First IP 172.16.20.128
First IP (Decimal) 2886734976
Last IP 172.16.20.255
Last IP (Decimal) 2886735103
Total Host 128
CIDR
172.16.20.128/25

/24:
CIDR to IP Range
Result
CIDR Range 172.16.20.128/24
Netmask 255.255.255.0
Wildcard Bits 0.0.0.255
First IP 172.16.20.0
First IP (Decimal) 2886734848
Last IP 172.16.20.255
Last IP (Decimal) 2886735103
Total Host 256
CIDR
172.16.20.128/24



You manage an App Engine Service that aggregates and visualizes data from BigQuery. The application is deployed with the default App Engine Service account. The data that needs to be visualized resides in a different project managed by another team. You do not have access to this project, but you want your application to be able to read data from the BigQuery dataset.
What should you do?

  1. Ask the other team to grant your default App Engine Service account the role of BigQuery Job User.
  2. Ask the other team to grant your default App Engine Service account the role of BigQuery Data Viewer.
  3. In Cloud IAM of your project, ensure that the default App Engine service account has the role of BigQuery Data Viewer.
  4. In Cloud IAM of your project, grant a newly created service account from the other team the role of BigQuery Job User in your project.

Answer(s): B

Explanation:

The resource that you need to get access is in the other project.

roles/bigquery.dataViewer BigQuery Data Viewer
When applied to a table or view, this role provides permissions to:

Read data and metadata from the table or view.
This role cannot be applied to individual models or routines.

When applied to a dataset, this role provides permissions to:

Read the dataset's metadata and list tables in the dataset.
Read data and metadata from the dataset's tables.
When applied at the project or organization level, this role can also enumerate all datasets in the project. Additional roles, however, are necessary to allow the running of jobs.



You need to create a copy of a custom Compute Engine virtual machine (VM) to facilitate an expected increase in application traffic due to a business acquisition.
What should you do?

  1. Create a Compute Engine snapshot of your base VM. Create your images from that snapshot.
  2. Create a Compute Engine snapshot of your base VM. Create your instances from that snapshot.
  3. Create a custom Compute Engine image from a snapshot. Create your images from that image.
  4. Create a custom Compute Engine image from a snapshot. Create your instances from that image.

Answer(s): D

Explanation:

A custom image belongs only to your project. To create an instance with a custom image, you must first have a custom image.


Reference:

https://cloud.google.com/compute/docs/instances/create-start-instance

Preparing your instance for an image
You can create an image from a disk even while it is attached to a running VM instance. However, your image will be more reliable if you put the instance in a state that is easier for the image to capture. Use one of the following processes to prepare your boot disk for the image:

Stop the instance so that it can shut down and stop writing any data to the persistent disk.

If you can't stop your instance before you create the image, minimize the amount of writes to the disk and sync your file system.

Pause apps or operating system processes that write data to that persistent disk. Run an app flush to disk if necessary. For example, MySQL has a FLUSH statement. Other apps might have similar processes.
Stop your apps from writing to your persistent disk.
Run sudo sync.
After you prepare the instance, create the image.

https://cloud.google.com/compute/docs/images/create-delete-deprecate-private- images#prepare_instance_for_image



You have deployed an application on a single Compute Engine instance. The application writes logs to disk. Users start reporting errors with the application. You want to diagnose the problem.
What should you do?

  1. Navigate to Cloud Logging and view the application logs.
  2. Connect to the instance's serial console and read the application logs.
  3. Configure a Health Check on the instance and set a Low Healthy Threshold value.
  4. Install and configure the Cloud Logging Agent and view the logs from Cloud Logging.

Answer(s): D


Reference:

https://cloud.google.com/error-reporting/docs/setup/compute-engine

Cloud Loging knows nothing about applications installed on the system without an agent collecting logs. Using the serial console is not a best-practice and is impractical on a large scale. The VM images for Compute Engine and Amazon Elastic Compute Cloud (EC2) don't include the Logging agent, so you must complete these steps to install it on those instances. The agent runs under both Linux and Windows. Source:
https://cloud.google.com/logging/docs/agent/logging/installation






Post your Comments and Discuss Google Google Associate Cloud Engineer exam with other Community members:

Google Associate Cloud Engineer Exam Discussions & Posts