Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors

Google Professional Cloud Network Engineer PROFESSIONAL CLOUD NETWORK ENGINEER Dumps in PDF

Free Google PROFESSIONAL CLOUD NETWORK ENGINEER Real Questions (page: 27)

PROFESSIONAL CLOUD NETWORK ENGINEER PDF — 307 Questions

You want to configure load balancing for an internet-facing, standard voice-over-IP (VOIP) application.

Which type of load balancer should you use?

  1. HTTP(S) load balancer
  2. Network load balancer
  3. Internal TCP/UDP load balancer
  4. TCP/SSL proxy load balancer

Answer(s): B


Reference:

https://cloud.google.com/load-balancing/docs/choosing-load-balancer#external-internal



You want to configure a NAT to perform address translation between your on-premises network blocks and GCP.

Which NAT solution should you use?

  1. Cloud NAT
  2. An instance with IP forwarding enabled
  3. An instance configured with iptables DNAT rules
  4. An instance configured with iptables SNAT rules

Answer(s): A


Reference:

https://cloud.google.com/nat/docs/overview



You need to ensure your personal SSH key works on every instance in your project. You want to accomplish this as efficiently as possible.

What should you do?

  1. Upload your public ssh key to the project Metadata.
  2. Upload your public ssh key to each instance Metadata.
  3. Create a custom Google Compute Engine image with your public ssh key embedded.
  4. Use gcloud compute ssh to automatically copy your public ssh key to the instance.

Answer(s): A


Reference:

https://cloud.google.com/compute/docs/instances/adding-removing-ssh-keys



In order to provide subnet level isolation, you want to force instance-A in one subnet to route through a security appliance, called instance-B, in another subnet.

What should you do?

  1. Create a more specific route than the system-generated subnet route, pointing the next hop to instance-B with no tag.
  2. Create a more specific route than the system-generated subnet route, pointing the next hop to instance-B with a tag applied to instance-A.
  3. Delete the system-generated subnet route and create a specific route to instance-B with a tag applied to instance-A.
  4. Move instance-B to another VPC and, using multi-NIC, connect instance-B's interface to instance-A's network. Configure the appropriate routes to force traffic through to instance-A.

Answer(s): D



You create a Google Kubernetes Engine private cluster and want to use kubectl to get the status of the pods. In one of your instances you notice the master is not responding, even though the cluster is up and running.

What should you do to solve the problem?

  1. Assign a public IP address to the instance.
  2. Create a route to reach the Master, pointing to the default internet gateway.
  3. Create the appropriate firewall policy in the VPC to allow traffic from Master node IP address to the instance.
  4. Create the appropriate master authorized network entries to allow the instance to communicate to the master.

Answer(s): D



Your company has a security team that manages firewalls and SSL certificates. It also has a networking team that manages the networking resources. The networking team needs to be able to read firewall rules, but should not be able to create, modify, or delete them.

How should you set up permissions for the networking team?

  1. Assign members of the networking team the compute.networkUser role.
  2. Assign members of the networking team the compute.networkAdmin role.
  3. Assign members of the networking team a custom role with only the compute.networks.* and the compute.firewalls.list permissions.
  4. Assign members of the networking team the compute.networkViewer role, and add the compute.networks.use permission.

Answer(s): B


Reference:

https://cloud.google.com/compute/docs/access/iam



You have created an HTTP(S) load balanced service. You need to verify that your backend instances are responding properly.

How should you configure the health check?

  1. Set request-path to a specific URL used for health checking, and set proxy-header to PROXY_V1.
  2. Set request-path to a specific URL used for health checking, and set host to include a custom host header that identifies the health check.
  3. Set request-path to a specific URL used for health checking, and set response to a string that the backend service will always return in the response body.
  4. Set proxy-header to the default value, and set host to include a custom host header that identifies the health check.

Answer(s): C



You need to give each member of your network operations team least-privilege access to create, modify, and delete Cloud Interconnect VLAN attachments.

What should you do?

  1. Assign each user the editor role.
  2. Assign each user the compute.networkAdmin role.
  3. Give each user the following permissions only: compute.interconnectAttachments.create, compute.interconnectAttachments.get.
  4. Give each user the following permissions only: compute.interconnectAttachments.create, compute.interconnectAttachments.get, compute.routers.create, compute.routers.get, compute.routers.update.

Answer(s): B



PDF
Viewing page 27 of 32

Share your comments for Google PROFESSIONAL CLOUD NETWORK ENGINEER exam with other users:

A
A\MAM
6/27/2023 5:17:00 PM

q-6 ans-b correct. https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-cli-quick-start/use-the-cli/commit-configuration-changes

UNITED STATES
U
unanimous
12/15/2023 6:38:00 AM

very nice very nice

Anonymous
A
akminocha
9/28/2023 10:36:00 AM

please help us with 1z0-1107-2 dumps

INDIA
J
Jefi
9/4/2023 8:15:00 AM

please upload the practice questions

Anonymous
T
Thembelani
5/30/2023 2:45:00 AM

need this dumps

Anonymous
A
Abduraimov
4/19/2023 12:43:00 AM

preparing for this exam is overwhelming. you cannot pass without the help of these exam dumps.

UNITED KINGDOM
P
Puneeth
10/5/2023 2:06:00 AM

new to this site but i feel it is good

EUROPEAN UNION
A
Ashok Kumar
1/2/2024 6:53:00 AM

the correct answer to q8 is b. explanation since the mule app has a dependency, it is necessary to include project modules and dependencies to make sure the app will run successfully on the runtime on any other machine. source code of the component that the mule app is dependent of does not need to be included in the exported jar file, because the source code is not being used while executing an app. compiled code is being used instead.

Anonymous
M
Merry
7/30/2023 6:57:00 AM

good questions

Anonymous
V
VoiceofMidnight
12/17/2023 4:07:00 PM

Delayed the exam until December 29th.

UNITED STATES
U
Umar Ali
8/29/2023 2:59:00 PM

A and D are True

Anonymous
V
vel
8/28/2023 9:17:09 AM

good one with explanation

Anonymous
G
Gurdeep
1/18/2024 4:00:15 PM

This is one of the most useful study guides I have ever used.

CANADA
AI Tutor 👋 I’m here to help!