Google Professional-Cloud-Network exam revealed answer (P. 18)

Question 171

You have two VPCs: VPC A in Project A and VPC B in Project B. The VPCs are peered, and each VPC has VM instances in four zones. You are using the Network Intelligence Center Performance Dashboard to investigate the packet loss for traffic flows that start in VPC A and terminate in VPC B. You need the reported packet loss metric to have at least a 90% confidence level. What should you do?

A. Ensure that each zone in each of the VPC networks has at least 10 compute instances. Look in Project A for the reported metric.

B. Ensure that each zone in each of the VPC networks has at least 9 compute instances. Look in Project B for the reported metric.

C. Ensure that each zone in each of the VPC networks has at least 9 compute instances. Look in Project A for the reported metric.

D. Ensure that each zone in each of the VPC networks has at least 10 compute instances. Look in Project B for the reported metric.

Question 172

You are designing a new network infrastructure for your customer in Google Cloud. Your customer requires a connection between two Google Cloud VPCs that must include a VPN tunnel. You want to follow Google-recommended practices while ensuring maximum availability of the connection. Which VPN configuration should you choose?

A. Policy-based VPN using Classic VPN between the two Google Cloud VPCs

B. Border Gateway Protocol (BGP)-based VPN using Classic VPN between the two Google Cloud VPCs

C. Route-based VPN using Classic VPN between the two Google Cloud VPCs

D. Border Gateway Protocol (BGP)-based VPN using HA VPN between the two Google Cloud VPCs

Question 173

Your company is moving to a hybrid cloud environment and needs to connect two on-premises data centers to Google Cloud. Your company has opted for no service level agreement (SLA) on the Dedicated Interconnect ports. You set up a single Dedicated Interconnect to connect each on-premises data center to Google Cloud: one Dedicated Interconnect in us-east1 and another Dedicated Interconnect in us-west1. You also configured a Cloud Router for each Dedicated Interconnect in each respective region. You now need to configure the Interconnect attachments to provide as much high availability diversity as possible based on this design. What should you do?

A. • Build one VLAN attachment from each Dedicated Interconnect corresponding to the Cloud Router in that region.
• Enable global routing at the VPC layer.

B. • Build one VLAN attachment from each Dedicated Interconnect corresponding to the Cloud Router in that region.
• Enable regional routing at the VPC layer.

C. • Build two VLAN attachments from each Dedicated Interconnect: one connecting to the Cloud Router in us-east1, and one connecting to the Cloud Router in us-west1.
• Enable regional routing at the VPC layer.

D. • Build two VLAN attachments from each Dedicated Interconnect: one connecting to the Cloud Router in us-east1, and one connecting to the Cloud Router in us-west1.
• Enable global routing at the VPC layer.

Question 174

Your company runs an enterprise platform on-premises using virtual machines (VMs). Your internet customers have created tens of thousands of DNS domains pointing to your public IP addresses allocated to the VMs. Typically, your customers hard-code your IP addresses in their DNS records. You are now planning to migrate the platform to Compute Engine and you want to use Bring Your Own IP. You want to minimize disruption to the platform. What should you do?

A. Create a VPC and request static external IP addresses from Google Cloud. Assign the IP addresses to the Compute Engine instances. Notify your customers of the new IP addresses so they can update their DNS records.

B. Verify ownership of your IP addresses. After the verification, Google Cloud advertises and provisions the IP prefix for you. Assign the IP addresses to the Compute Engine instances.

C. Create a VPC with the same IP address range as your on-premises network. Assign the IP addresses to the Compute Engine instances.

D. Verify ownership of your IP addresses. Use live migration to import the prefix. Assign the IP addresses to the Compute Engine instances.

Question 175

You need to create the technical architecture for hybrid connectivity from your data center to Google Cloud. This will be managed by a partner. You want to follow Google-recommended practices for production-level applications. What should you do?

A. Ask the partner to install two security appliances in the data center. Configure one VPN connection from each of these devices to Google Cloud, and ensure that the VPN devices on-premises are in separate racks on separate power and cooling systems.

B. Configure two Partner Interconnect connections in one metropolitan area (metro). Make sure the Interconnect connections are placed in different metro edge availability domains. Configure two VLAN attachments in a single region, and configure regional dynamic routing on the VPC.

C. Configure two Partner Interconnect connections in one metro and two connections in another metro. Make sure the Interconnect connections are placed in different metro edge availability domains. Configure two VLAN attachments in one region and two VLAN attachments in another region, and configure global dynamic routing on the VPC.

D. Configure two Partner Interconnect connections in one metro and two connections in another metro. Make sure the Interconnect connections are placed in different metro edge availability domains. Configure two VLAN attachments in one region and two VLAN attachments in another region, and configure regional dynamic routing on the VPC.

Question 176

You are deploying your infrastructure in the us-central1 region. Your on-premises data center is located in New York City, and the Google Cloud region closest to New York City is us-east4. Your Cloud Interconnect is located in Ashburn, Virginia (VA), United States. You need to use Cloud Interconnect to connect your application infrastructure with backend systems in your data center location. You do not expect the application bandwidth to exceed 500 Mbps. You want to minimize latency and cost. What should you do?

A. Create a Cloud Router and VLAN attachments in the us-east4 region attached to your physical Interconnect in Ashburn, VEnable global routing in your VPC. Set the bandwidth on the VLAN attachments to 500 Mbps.

B. Create a Cloud Router and VLAN attachments in the us-east4 region attached to your physical Interconnect in Ashburn, VA. Enable global routing in your VPC.

C. Create a Cloud Router in the us-central1 region and VLAN attachments in the us-east4 region attached to your physical Interconnect in Ashburn, VA. Enable global routing in your VPC.

D. Create a Cloud Router and VLAN attachments in the us-central1 region attached to your physical Interconnect in Ashburn, VA.

Question 177

You have provisioned a Cloud Interconnect connection with a VLAN attachment. You configured Border Gateway Protocol (BGP) between your on-premises router and your Cloud Router. After deploying and testing the connection, you discover that the BGP session is not established between your on-premises router and the Cloud Router. Which two actions should you take to resolve this issue? (Choose two.)

A. From the Google Cloud console, run gcloud compute routers get-status to verify the Address Resolution Protocol (ARP) learned.

B. Verify that you have configured the on-premises router's subinterface with a subnet mask of /31.

C. Verify that you have configured the on-premises router's eBGP multihop with a minimum hop length of 4.

D. Verify that you have configured the on-premises router's BGP security parameters to use MD5 authentication.

E. From the Google Cloud console, run gcloud compute interconnects get-diagnostics to verify the Address Resolution Protocol (ARP) learned.

Question 178

Your company has a single on-premises data center that needs to be connected to a VPC in Google Cloud. The total bandwidth requirement is 10Gbps. The connection must be redundant and have a minimum SLA of 99.9%. Due to the sensitive nature of the workloads, you need to implement the solution with the lowest latency. What should you do?

A. Order a 10Gbps Partner Interconnect VLAN attachment. Create a Cloud Router in your Google Cloud VPC.

B. Order two 10Gbps Dedicated Interconnect connections in a single metropolitan area (metro). Distribute the connections across different edge availability domains. Create a Cloud Router and two 10Gbps VLAN attachments.

C. Create one HA VPN gateway. Create two tunnels-one tunnel for each of the two interfaces of the HA VPN gateway. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device that is located on-premises.

D. Create one HA VPN gateway. Create two tunnels-one tunnel for each of the two interfaces of the HA VPN gateway. Terminate each of the two tunnels on different public IPs addresses that are configured on the VPN termination device that is located on-premises.

Question 179

Your company deployed a hub and spoke architecture in Google Cloud to host their workloads. They use VPC network peerings to connect the hub and the spokes. You need to replicate the design and use Network Connectivity Center. What should you do?

A. Choose a Network Connectivity Center star topology. Deploy the hub VPC in the center group. Deploy the spoke VPCs in the edge group.

B. Choose a Network Connectivity Center star topology. Deploy the spoke VPCs in the center group. Deploy the hub VPC in the edge group.

C. Choose a Network Connectivity Center mesh topology. Configure the hub and the spokes as Network Connectivity Center spokes.

D. Choose a Network Connectivity Center mesh topology. Configure the spokes as Network Connectivity Center spokes.

Question 180

You are deploying HA VPN within Google Cloud. You need to exchange routes dynamically between your on-premises gateway and Google Cloud. You have already created a HA VPN gateway and a peer VPN gateway resource. What should you do?

A. Create a Cloud Router, add VPN tunnels, and configure BGP sessions.

B. Create a Cloud Router, add VPN tunnels, and configure static routes to your subnet ranges.

C. Create a second HA VPN gateway, add VPN tunnels, and create firewall rules to allow BGP traffic to the Cloud Router.

D. Create a second HA VPN gateway, add VPN tunnels, and enable global dynamic routing.

Win IT Exam with Last Dumps 2025

Google Professional-Cloud-Network Exam

Page 18/25

Viewing Questions 171 180 out of 248 Questions

A. Ensure that each zone in each of the VPC networks has at least 10 compute instances. Look in Project A for the reported metric.

B. Ensure that each zone in each of the VPC networks has at least 9 compute instances. Look in Project B for the reported metric.

C. Ensure that each zone in each of the VPC networks has at least 9 compute instances. Look in Project A for the reported metric.

D. Ensure that each zone in each of the VPC networks has at least 10 compute instances. Look in Project B for the reported metric.

A. Policy-based VPN using Classic VPN between the two Google Cloud VPCs

B. Border Gateway Protocol (BGP)-based VPN using Classic VPN between the two Google Cloud VPCs

C. Route-based VPN using Classic VPN between the two Google Cloud VPCs

D. Border Gateway Protocol (BGP)-based VPN using HA VPN between the two Google Cloud VPCs

A. • Build one VLAN attachment from each Dedicated Interconnect corresponding to the Cloud Router in that region.• Enable global routing at the VPC layer.

B. • Build one VLAN attachment from each Dedicated Interconnect corresponding to the Cloud Router in that region.• Enable regional routing at the VPC layer.

C. • Build two VLAN attachments from each Dedicated Interconnect: one connecting to the Cloud Router in us-east1, and one connecting to the Cloud Router in us-west1.• Enable regional routing at the VPC layer.

D. • Build two VLAN attachments from each Dedicated Interconnect: one connecting to the Cloud Router in us-east1, and one connecting to the Cloud Router in us-west1.• Enable global routing at the VPC layer.

A. Create a VPC and request static external IP addresses from Google Cloud. Assign the IP addresses to the Compute Engine instances. Notify your customers of the new IP addresses so they can update their DNS records.

B. Verify ownership of your IP addresses. After the verification, Google Cloud advertises and provisions the IP prefix for you. Assign the IP addresses to the Compute Engine instances.

C. Create a VPC with the same IP address range as your on-premises network. Assign the IP addresses to the Compute Engine instances.

D. Verify ownership of your IP addresses. Use live migration to import the prefix. Assign the IP addresses to the Compute Engine instances.

You need to create the technical architecture for hybrid connectivity from your data center to Google Cloud. This will be managed by a partner. You want to follow Google-recommended practices for production-level applications. What should you do?

A. Ask the partner to install two security appliances in the data center. Configure one VPN connection from each of these devices to Google Cloud, and ensure that the VPN devices on-premises are in separate racks on separate power and cooling systems.

B. Configure two Partner Interconnect connections in one metropolitan area (metro). Make sure the Interconnect connections are placed in different metro edge availability domains. Configure two VLAN attachments in a single region, and configure regional dynamic routing on the VPC.

A. Create a Cloud Router and VLAN attachments in the us-east4 region attached to your physical Interconnect in Ashburn, VEnable global routing in your VPC. Set the bandwidth on the VLAN attachments to 500 Mbps.

B. Create a Cloud Router and VLAN attachments in the us-east4 region attached to your physical Interconnect in Ashburn, VA. Enable global routing in your VPC.

C. Create a Cloud Router in the us-central1 region and VLAN attachments in the us-east4 region attached to your physical Interconnect in Ashburn, VA. Enable global routing in your VPC.

D. Create a Cloud Router and VLAN attachments in the us-central1 region attached to your physical Interconnect in Ashburn, VA.

A. From the Google Cloud console, run gcloud compute routers get-status to verify the Address Resolution Protocol (ARP) learned.

B. Verify that you have configured the on-premises router's subinterface with a subnet mask of /31.

C. Verify that you have configured the on-premises router's eBGP multihop with a minimum hop length of 4.

D. Verify that you have configured the on-premises router's BGP security parameters to use MD5 authentication.

E. From the Google Cloud console, run gcloud compute interconnects get-diagnostics to verify the Address Resolution Protocol (ARP) learned.

A. Order a 10Gbps Partner Interconnect VLAN attachment. Create a Cloud Router in your Google Cloud VPC.

B. Order two 10Gbps Dedicated Interconnect connections in a single metropolitan area (metro). Distribute the connections across different edge availability domains. Create a Cloud Router and two 10Gbps VLAN attachments.

C. Create one HA VPN gateway. Create two tunnels-one tunnel for each of the two interfaces of the HA VPN gateway. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device that is located on-premises.

D. Create one HA VPN gateway. Create two tunnels-one tunnel for each of the two interfaces of the HA VPN gateway. Terminate each of the two tunnels on different public IPs addresses that are configured on the VPN termination device that is located on-premises.

Your company deployed a hub and spoke architecture in Google Cloud to host their workloads. They use VPC network peerings to connect the hub and the spokes. You need to replicate the design and use Network Connectivity Center. What should you do?

A. Choose a Network Connectivity Center star topology. Deploy the hub VPC in the center group. Deploy the spoke VPCs in the edge group.

B. Choose a Network Connectivity Center star topology. Deploy the spoke VPCs in the center group. Deploy the hub VPC in the edge group.

C. Choose a Network Connectivity Center mesh topology. Configure the hub and the spokes as Network Connectivity Center spokes.

D. Choose a Network Connectivity Center mesh topology. Configure the spokes as Network Connectivity Center spokes.

You are deploying HA VPN within Google Cloud. You need to exchange routes dynamically between your on-premises gateway and Google Cloud. You have already created a HA VPN gateway and a peer VPN gateway resource. What should you do?

A. Create a Cloud Router, add VPN tunnels, and configure BGP sessions.

B. Create a Cloud Router, add VPN tunnels, and configure static routes to your subnet ranges.

C. Create a second HA VPN gateway, add VPN tunnels, and create firewall rules to allow BGP traffic to the Cloud Router.

D. Create a second HA VPN gateway, add VPN tunnels, and enable global dynamic routing.

A. • Build one VLAN attachment from each Dedicated Interconnect corresponding to the Cloud Router in that region.
• Enable global routing at the VPC layer.

B. • Build one VLAN attachment from each Dedicated Interconnect corresponding to the Cloud Router in that region.
• Enable regional routing at the VPC layer.

C. • Build two VLAN attachments from each Dedicated Interconnect: one connecting to the Cloud Router in us-east1, and one connecting to the Cloud Router in us-west1.
• Enable regional routing at the VPC layer.

D. • Build two VLAN attachments from each Dedicated Interconnect: one connecting to the Cloud Router in us-east1, and one connecting to the Cloud Router in us-west1.
• Enable global routing at the VPC layer.