CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Google
  5. Professional Cloud Network Engineer

Free Professional Cloud Network Engineer Exam Braindumps (page: 26)

Page 25 of 55
PDF with 215 Questions

You need to configure the Border Gateway Protocol (BGP) session for a VPN tunnel you just created between two Google Cloud VPCs, 10.1.0.0/16 and 172.16.0.0/16. You have a Cloud Router (router-1) in the 10.1.0.0/16 network and a second Cloud Router (router-2) in the 172.16.0.0/16 network.
Which configuration should you use for the BGP session?





Answer(s): C



Your company's on-premises network is connected to a VPC using a Cloud VPN tunnel. You have a static route of 0.0.0.0/0 with the VPN tunnel as its next hop defined in the VPC. All internet bound traffic currently passes through the on-premises network. You configured Cloud NAT to translate the primary IP addresses of Compute Engine instances in one region. Traffic from those instances will now reach the internet directly from their VPC and not from the on-premises network. Traffic from the virtual machines (VMs) is not translating addresses as expected.
What should you do?

  1. Lower the TCP Established Connection Idle Timeout for the NAT gateway.
  2. Add firewall rules that allow ingress and egress of the external NAT IP address, have a target tag that is on the Compute Engine instances, and have a priority value higher than the priority value of the default route to the VPN gateway.
  3. Add a default static route to the VPC with the default internet gateway as the next hop, the network tag associated with the Compute Engine instances, and a higher priority than the priority of the default route to the VPN tunnel.
  4. Increase the default min-ports-per-vm setting for the Cloud NAT gateway.

Answer(s): A



You are designing a Partner Interconnect hybrid cloud connectivity solution with geo-redundancy across two metropolitan areas. You want to follow Google-recommended practices to set up the following region/metro pairs:
(region 1/metro 1)
(region 2/metro 2)
What should you do?

  1. Create a Cloud Router in region 1 with two VLAN attachments connected to metro1-zone1-x.
    Create a Cloud Router in region 2 with two VLAN attachments connected to metro1-zone2-x.
  2. Create a Cloud Router in region 1 with one VLAN attachment connected to metro1-zone1-x.

    Create a Cloud Router in region 2 with two VLAN attachments connected to metro2-zone2-x.
  3. Create a Cloud Router in region 1 with one VLAN attachment connected to metro1-zone2-x.
    Create a Cloud Router in region 2 with one VLAN attachment connected to metro2-zone2-x.
  4. Create a Cloud Router in region 1 with one VLAN attachment connected to metro1-zone1-x and one VLAN attachment connected to metro1-zone2-x.
    Create a Cloud Router in region 2 with one VLAN attachment connected to metro2-zone1-x and one VLAN attachment to metro2-zone2-x.

Answer(s): B



You are designing the network architecture for your organization. Your organization has three developer teams: Web, App, and Database. All of the developer teams require access to Compute Engine instances to perform their critical tasks. You are part of a small network and security team that needs to provide network access to the developers. You need to maintain centralized control over network resources, including subnets, routes, and firewalls. You want to minimize operational overhead. How should you design this topology?

  1. Configure a host project with a Shared VPC. Create service projects for Web, App, and Database.
  2. Configure one VPC for Web, one VPC for App, and one VPC for Database. Configure HA VPN between each VPC.
  3. Configure three Shared VPC host projects, each with a service project: one for Web, one for App, and one for Database.
  4. Configure one VPC for Web, one VPC for App, and one VPC for Database. Use VPC Network Peering to connect all VPCs in a full mesh.

Answer(s): C






Post your Comments and Discuss Google Professional Cloud Network Engineer exam with other Community members:

Professional Cloud Network Engineer Discussions & Posts