CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Google
  5. Professional Cloud Network Engineer

Free Professional Cloud Network Engineer Exam Braindumps (page: 9)

Page 8 of 55
PDF with 215 Questions

You converted an auto mode VPC network to custom mode. Since the conversion, some of your Cloud Deployment Manager templates are no longer working. You want to resolve the problem.

What should you do?

  1. Apply an additional IAM role to the Google API's service account to allow custom mode networks.
  2. Update the VPC firewall to allow the Cloud Deployment Manager to access the custom mode networks.
  3. Explicitly reference the custom mode networks in the Cloud Armor whitelist.
  4. Explicitly reference the custom mode networks in the Deployment Manager templates.

Answer(s): D



You have recently been put in charge of managing identity and access management for your organization. You have several projects and want to use scripting and automation wherever possible. You want to grant the editor role to a project member.

Which two methods can you use to accomplish this? (Choose two.)

  1. GetIamPolicy() via REST API
  2. setIamPolicy() via REST API
  3. gcloud pubsub add-iam-policy-binding Sprojectname --member user:Susername --role roles/editor
  4. gcloud projects add-iam-policy-binding Sprojectname --member user:Susername --role roles/editor
  5. Enter an email address in the Add members field, and select the desired role from the drop-down menu in the GCP Console.

Answer(s): D,E



You are using a 10-Gbps direct peering connection to Google together with the gsutil tool to upload files to Cloud Storage buckets from on-premises servers. The on-premises servers are 100 milliseconds away from the Google peering point. You notice that your uploads are not using the full 10-Gbps bandwidth available to you. You want to optimize the bandwidth utilization of the connection.

What should you do on your on-premises servers?

  1. Tune TCP parameters on the on-premises servers.
  2. Compress files using utilities like tar to reduce the size of data being sent.
  3. Remove the -m flag from the gsutil command to enable single-threaded transfers.
  4. Use the perfdiag parameter in your gsutil command to enable faster performance: gsutil perfdiag gs://[BUCKET NAME].

Answer(s): A

Explanation:

https://cloud.google.com/solutions/tcp-optimization-for-network-performance-in-gcp-and-hybrid https://cloud.google.com/solutions/tcp-optimization-for-network-performance-in-gcp-and-hybrid https://cloud.google.com/blog/products/gcp/5-steps-to-better-gcp-network-performance?hl=ml



You work for a multinational enterprise that is moving to GCP.

These are the cloud requirements:

· An on-premises data center located in the United States in Oregon and New York with Dedicated Interconnects connected to Cloud regions us-west1 (primary HQ) and us-east4 (backup) · Multiple regional offices in Europe and APAC
· Regional data processing is required in europe-west1 and australia-southeast1 · Centralized Network Administration Team

Your security and compliance team requires a virtual inline security appliance to perform L7 inspection for URL filtering. You want to deploy the appliance in us-west1.

What should you do?

  1. · Create 2 VPCs in a Shared VPC Host Project.· Configure a 2-NIC instance in zone us-west1-a in the Host Project.· Attach NIC0 in VPC #1 us-west1 subnet of the Host Project.· Attach NIC1 in VPC #2 us-west1 subnet of the Host Project.· Deploy the instance.· Configure the necessary routes and firewall rules to pass traffic through the instance.
  2. · Create 2 VPCs in a Shared VPC Host Project.· Configure a 2-NIC instance in zone us-west1-a in the Service Project.· Attach NIC0 in VPC #1 us-west1 subnet of the Host Project.· Attach NIC1 in VPC #2 us-west1 subnet of the Host Project.· Deploy the instance.· Configure the necessary routes and firewall rules to pass traffic through the instance.
  3. · Create 1 VPC in a Shared VPC Host Project.· Configure a 2-NIC instance in zone us-west1-a in the Host Project.· Attach NIC0 in us-west1 subnet of the Host Project.· Attach NIC1 in us-west1 subnet of the Host Project· Deploy the instance.· Configure the necessary routes and firewall rules to pass traffic through the instance.
  4. · Create 1 VPC in a Shared VPC Service Project.· Configure a 2-NIC instance in zone us-west1-a in the Service Project.· Attach NIC0 in us-west1 subnet of the Service Project.· Attach NIC1 in us-west1 subnet of the Service Project· Deploy the instance.· Configure the necessary routes and firewall rules to pass traffic through the instance.

Answer(s): B

Explanation:

https://cloud.google.com/vpc/docs/shared-vpc






Post your Comments and Discuss Google Professional Cloud Network Engineer exam with other Community members:

Professional Cloud Network Engineer Discussions & Posts