Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. Google
  3. PROFESSIONAL-CLOUD-NETWORK-ENGINEER

Google PROFESSIONAL-CLOUD-NETWORK-ENGINEER Exam (page: 6)
Google Professional Cloud Network Engineer
Updated on: 09-Feb-2026

Viewing Page 6 of 32
PROFESSIONAL-CLOUD-NETWORK-ENGINEER PDF 248 Questions

You want to configure load balancing for an internet-facing, standard voice-over-IP (VOIP) application.

Which type of load balancer should you use?

  1. HTTP(S) load balancer
  2. Network load balancer
  3. Internal TCP/UDP load balancer
  4. TCP/SSL proxy load balancer

Answer(s): B


Reference:

https://cloud.google.com/load-balancing/docs/choosing-load-balancer#external-internal



You want to configure a NAT to perform address translation between your on-premises network blocks and GCP.

Which NAT solution should you use?

  1. Cloud NAT
  2. An instance with IP forwarding enabled
  3. An instance configured with iptables DNAT rules
  4. An instance configured with iptables SNAT rules

Answer(s): A


Reference:

https://cloud.google.com/nat/docs/overview



You need to ensure your personal SSH key works on every instance in your project. You want to accomplish this as efficiently as possible.

What should you do?

  1. Upload your public ssh key to the project Metadata.
  2. Upload your public ssh key to each instance Metadata.
  3. Create a custom Google Compute Engine image with your public ssh key embedded.
  4. Use gcloud compute ssh to automatically copy your public ssh key to the instance.

Answer(s): A


Reference:

https://cloud.google.com/compute/docs/instances/adding-removing-ssh-keys



In order to provide subnet level isolation, you want to force instance-A in one subnet to route through a security appliance, called instance-B, in another subnet.

What should you do?

  1. Create a more specific route than the system-generated subnet route, pointing the next hop to instance-B with no tag.
  2. Create a more specific route than the system-generated subnet route, pointing the next hop to instance-B with a tag applied to instance-A.
  3. Delete the system-generated subnet route and create a specific route to instance-B with a tag applied to instance-A.
  4. Move instance-B to another VPC and, using multi-NIC, connect instance-B's interface to instance-A's network. Configure the appropriate routes to force traffic through to instance-A.

Answer(s): D



You create a Google Kubernetes Engine private cluster and want to use kubectl to get the status of the pods. In one of your instances you notice the master is not responding, even though the cluster is up and running.

What should you do to solve the problem?

  1. Assign a public IP address to the instance.
  2. Create a route to reach the Master, pointing to the default internet gateway.
  3. Create the appropriate firewall policy in the VPC to allow traffic from Master node IP address to the instance.
  4. Create the appropriate master authorized network entries to allow the instance to communicate to the master.

Answer(s): D



Your company has a security team that manages firewalls and SSL certificates. It also has a networking team that manages the networking resources. The networking team needs to be able to read firewall rules, but should not be able to create, modify, or delete them.

How should you set up permissions for the networking team?

  1. Assign members of the networking team the compute.networkUser role.
  2. Assign members of the networking team the compute.networkAdmin role.
  3. Assign members of the networking team a custom role with only the compute.networks.* and the compute.firewalls.list permissions.
  4. Assign members of the networking team the compute.networkViewer role, and add the compute.networks.use permission.

Answer(s): B


Reference:

https://cloud.google.com/compute/docs/access/iam



You have created an HTTP(S) load balanced service. You need to verify that your backend instances are responding properly.

How should you configure the health check?

  1. Set request-path to a specific URL used for health checking, and set proxy-header to PROXY_V1.
  2. Set request-path to a specific URL used for health checking, and set host to include a custom host header that identifies the health check.
  3. Set request-path to a specific URL used for health checking, and set response to a string that the backend service will always return in the response body.
  4. Set proxy-header to the default value, and set host to include a custom host header that identifies the health check.

Answer(s): C



You need to give each member of your network operations team least-privilege access to create, modify, and delete Cloud Interconnect VLAN attachments.

What should you do?

  1. Assign each user the editor role.
  2. Assign each user the compute.networkAdmin role.
  3. Give each user the following permissions only: compute.interconnectAttachments.create, compute.interconnectAttachments.get.
  4. Give each user the following permissions only: compute.interconnectAttachments.create, compute.interconnectAttachments.get, compute.routers.create, compute.routers.get, compute.routers.update.

Answer(s): B



Viewing Page 6 of 32



Share your comments for Google PROFESSIONAL-CLOUD-NETWORK-ENGINEER exam with other users:

Chris 8/26/2023 1:10:00 AM

looking for c1000-158: ibm cloud technical advocate v4 questions
Anonymous


sachin 6/27/2023 1:22:00 PM

can you share the pdf
Anonymous


Blessious Phiri 8/13/2023 10:26:00 AM

admin ii is real technical stuff
Anonymous


Luis Manuel 7/13/2023 9:30:00 PM

could you post the link
UNITED STATES


vijendra 8/18/2023 7:54:00 AM

hello send me dumps
Anonymous


Simeneh 7/9/2023 8:46:00 AM

it is very nice
Anonymous


john 11/16/2023 5:13:00 PM

i gave the amazon dva-c02 tests today and passed. very helpful.
Anonymous


Tao 11/20/2023 8:53:00 AM

there is an incorrect word in the problem statement. for example, in question 1, there is the word "speci c". this is "specific. in the other question, there is the word "noti cation". this is "notification. these mistakes make this site difficult for me to use.
Anonymous


patricks 10/24/2023 6:02:00 AM

passed my az-120 certification exam today with 90% marks. studied using the dumps highly recommended to all.
Anonymous


Ananya 9/14/2023 5:17:00 AM

i need it, plz make it available
UNITED STATES


JM 12/19/2023 2:41:00 PM

q47: intrusion prevention system is the correct answer, not patch management. by definition, there are no patches available for a zero-day vulnerability. the way to prevent an attacker from exploiting a zero-day vulnerability is to use an ips.
UNITED STATES


Ronke 8/18/2023 10:39:00 AM

this is simple but tiugh as well
Anonymous


CesarPA 7/12/2023 10:36:00 PM

questão 4, segundo meu compilador local e o site https://www.jdoodle.com/online-java-compiler/, a resposta correta é "c" !
UNITED STATES


Jeya 9/13/2023 7:50:00 AM

its very useful
INDIA


Tracy 10/24/2023 6:28:00 AM

i mastered my skills and aced the comptia 220-1102 exam with a score of 920/1000. i give the credit to for my success.
Anonymous


James 8/17/2023 4:33:00 PM

real questions
UNITED STATES


Aderonke 10/23/2023 1:07:00 PM

very helpful assessments
UNITED KINGDOM


Simmi 8/24/2023 7:25:00 AM

hi there, i would like to get dumps for this exam
AUSTRALIA


johnson 10/24/2023 5:47:00 AM

i studied for the microsoft azure az-204 exam through it has 100% real questions available for practice along with various mock tests. i scored 900/1000.
GERMANY


Manas 9/9/2023 1:48:00 AM

please upload 1z0-1072-23 exam dups
UNITED STATES


SB 9/12/2023 5:15:00 AM

i was hoping if you could please share the pdf as i’m currently preparing to give the exam.
Anonymous


Jagjit 8/26/2023 5:01:00 PM

i am looking for oracle 1z0-116 exam
UNITED STATES


S Mallik 11/27/2023 12:32:00 AM

where we can get the answer to the questions
Anonymous


PiPi Li 12/12/2023 8:32:00 PM

nice questions
NETHERLANDS


Dan 8/10/2023 4:19:00 PM

question 129 is completely wrong.
UNITED STATES


gayathiri 7/6/2023 12:10:00 AM

i need dump
UNITED STATES


Deb 8/15/2023 8:28:00 PM

love the site.
UNITED STATES


Michelle 6/23/2023 4:08:00 AM

can you please upload it back?
Anonymous


Ajay 10/3/2023 12:17:00 PM

could you please re-upload this exam? thanks a lot!
Anonymous


him 9/30/2023 2:38:00 AM

great about shared quiz
Anonymous


San 11/14/2023 12:46:00 AM

goood helping
Anonymous


Wang 6/9/2022 10:05:00 PM

pay attention to questions. they are very tricky. i waould say about 80 to 85% of the questions are in this exam dump.
UNITED STATES


Mary 5/16/2023 4:50:00 AM

wish you would allow more free questions
Anonymous


thomas 9/12/2023 4:28:00 AM

great simulation
Anonymous