Download Valid Professional Cloud Network Engineer Exam Dumps for Success
Exam : Professional Cloud
Network Engineer
Title : Professional Cloud Network
Engineer
https://www.passcert.com/Professional-Cloud-Network-Engineer.html
1/6
, Download Valid Professional Cloud Network Engineer Exam Dumps for Success
1.You need to restrict access to your Google Cloud load-balanced application so that only specific IP
addresses can connect.
What should you do?
A. Create a secure perimeter using the Access Context Manager feature of VPC Service Controls and
restrict access to the source IP range of the allowed clients and Google health check IP ranges.
B. Create a secure perimeter using VPC Service Controls, and mark the load balancer as a service
restricted to the source IP range of the allowed clients and Google health check IP ranges.
C. Tag the backend instances "application," and create a firewall rule with target tag "application" and the
source IP range of the allowed clients and Google health check IP ranges.
D. Label the backend instances "application," and create a firewall rule with the target label "application"
and the source IP range of the allowed clients and Google health check IP ranges.
Answer: C
Explanation:
https://cloud.google.com/load-balancing/docs/https/setting-up-https#sendtraffic
2.Your end users are located in close proximity to us-east1 and europe-west1. Their workloads need to
communicate with each other. You want to minimize cost and increase network efficiency.
How should you design this topology?
A. Create 2 VPCs, each with their own regions and individual subnets. Create 2 VPN gateways to
establish connectivity between these regions.
B. Create 2 VPCs, each with their own region and individual subnets. Use external IP addresses on the
instances to establish connectivity between these regions.
C. Create 1 VPC with 2 regional subnets. Create a global load balancer to establish connectivity between
the regions.
D. Create 1 VPC with 2 regional subnets. Deploy workloads in these subnets and have them
communicate using private RFC1918 IP addresses.
Answer: D
Explanation:
https://cloud.google.com/vpc/docs/using-vpc#create-auto-network
We create one VPC network in auto mode that creates one subnet in each Google Cloud region
automatically. So, region us-east1 and europe-west1 are in the same network and they can communicate
using their internal IP address even though they are in different Regions. They take advantage of
Google's global fiber network.
3.Your organization is deploying a single project for 3 separate departments. Two of these departments
require network connectivity between each other, but the third department should remain in isolation. Your
design should create separate network administrative domains between these departments. You want to
minimize operational overhead.
How should you design the topology?
A. Create a Shared VPC Host Project and the respective Service Projects for each of the 3 separate
departments.
B. Create 3 separate VPCs, and use Cloud VPN to establish connectivity between the two appropriate
VPCs.
C. Create 3 separate VPCs, and use VPC peering to establish connectivity between the two appropriate
2/6
Exam : Professional Cloud
Network Engineer
Title : Professional Cloud Network
Engineer
https://www.passcert.com/Professional-Cloud-Network-Engineer.html
1/6
, Download Valid Professional Cloud Network Engineer Exam Dumps for Success
1.You need to restrict access to your Google Cloud load-balanced application so that only specific IP
addresses can connect.
What should you do?
A. Create a secure perimeter using the Access Context Manager feature of VPC Service Controls and
restrict access to the source IP range of the allowed clients and Google health check IP ranges.
B. Create a secure perimeter using VPC Service Controls, and mark the load balancer as a service
restricted to the source IP range of the allowed clients and Google health check IP ranges.
C. Tag the backend instances "application," and create a firewall rule with target tag "application" and the
source IP range of the allowed clients and Google health check IP ranges.
D. Label the backend instances "application," and create a firewall rule with the target label "application"
and the source IP range of the allowed clients and Google health check IP ranges.
Answer: C
Explanation:
https://cloud.google.com/load-balancing/docs/https/setting-up-https#sendtraffic
2.Your end users are located in close proximity to us-east1 and europe-west1. Their workloads need to
communicate with each other. You want to minimize cost and increase network efficiency.
How should you design this topology?
A. Create 2 VPCs, each with their own regions and individual subnets. Create 2 VPN gateways to
establish connectivity between these regions.
B. Create 2 VPCs, each with their own region and individual subnets. Use external IP addresses on the
instances to establish connectivity between these regions.
C. Create 1 VPC with 2 regional subnets. Create a global load balancer to establish connectivity between
the regions.
D. Create 1 VPC with 2 regional subnets. Deploy workloads in these subnets and have them
communicate using private RFC1918 IP addresses.
Answer: D
Explanation:
https://cloud.google.com/vpc/docs/using-vpc#create-auto-network
We create one VPC network in auto mode that creates one subnet in each Google Cloud region
automatically. So, region us-east1 and europe-west1 are in the same network and they can communicate
using their internal IP address even though they are in different Regions. They take advantage of
Google's global fiber network.
3.Your organization is deploying a single project for 3 separate departments. Two of these departments
require network connectivity between each other, but the third department should remain in isolation. Your
design should create separate network administrative domains between these departments. You want to
minimize operational overhead.
How should you design the topology?
A. Create a Shared VPC Host Project and the respective Service Projects for each of the 3 separate
departments.
B. Create 3 separate VPCs, and use Cloud VPN to establish connectivity between the two appropriate
VPCs.
C. Create 3 separate VPCs, and use VPC peering to establish connectivity between the two appropriate
2/6
