Professional-Cloud-Network-Engineer試験無料問題集「Google Cloud Certified - Professional Cloud Network Engineer 認定」
You need to define an address plan for a future new GKE cluster in your VPC. This will be a VPC native cluster, and the default Pod IP range allocation will be used. You must pre-provision all the needed VPC subnets and their respective IP address ranges before cluster creation. The cluster will initially have a single node, but it will be scaled to a maximum of three nodes if necessary. You want to allocate the minimum number of Pod IP addresses.
Which subnet mask should you use for the Pod IP address range?
Which subnet mask should you use for the Pod IP address range?
正解:C
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
You need to establish network connectivity between three Virtual Private Cloud networks, Sales, Marketing, and Finance, so that users can access resources in all three VPCs. You configure VPC peering between the Sales VPC and the Finance VPC. You also configure VPC peering between the Marketing VPC and the Finance VPC. After you complete the configuration, some users cannot connect to resources in the Sales VPC and the Marketing VPC. You want to resolve the problem.
What should you do?
What should you do?
正解:A
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
You are deploying an application that runs on Compute Engine instances. You need to determine how to expose your application to a new customer You must ensure that your application meets the following requirements
* Maps multiple existing reserved external IP addresses to the Instance
* Processes IP Encapsulating Security Payload (ESP) traffic
What should you do?
* Maps multiple existing reserved external IP addresses to the Instance
* Processes IP Encapsulating Security Payload (ESP) traffic
What should you do?
正解:B
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
Your on-premises data center has 2 routers connected to your GCP through a VPN on each router. All applications are working correctly; however, all of the traffic is passing across a single VPN instead of being load-balanced across the 2 connections as desired.
During troubleshooting you find:
*Each on-premises router is configured with the same ASN.
*Each on-premises router is configured with the same routes and priorities.
*Both on-premises routers are configured with a VPN connected to a single Cloud Router.
*The VPN logs have no-proposal-chosen lines when the VPNs are connecting.
*BGP session is not established between one on-premises router and the Cloud Router.
What is the most likely cause of this problem?
During troubleshooting you find:
*Each on-premises router is configured with the same ASN.
*Each on-premises router is configured with the same routes and priorities.
*Both on-premises routers are configured with a VPN connected to a single Cloud Router.
*The VPN logs have no-proposal-chosen lines when the VPNs are connecting.
*BGP session is not established between one on-premises router and the Cloud Router.
What is the most likely cause of this problem?
正解:A
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
You recently deployed your application in Google Cloud. You need to verify your Google Cloud network configuration before deploying your on-premises workloads. You want to confirm that your Google Cloud network configuration allows traffic to flow from your cloud resources to your on- premises network. This validation should also analyze and diagnose potential failure points in your Google Cloud network configurations without sending any data plane test traffic. What should you do?
正解:D
解答を投票する
You need to create the network infrastructure to deploy a highly available web application in the us-east1 and us-west1 regions. The application runs on Compute Engine instances, and it does not require the use of a database. You want to follow Google-recommended practices. What should you do?
正解:A
解答を投票する
You successfully provisioned a single Dedicated Interconnect. The physical connection is at a colocation facility closest to us-west2. Seventy-five percent of your workloads are in us-east4, and the remaining twenty- five percent of your workloads are in us-central1. All workloads have the same network traffic profile. You need to minimize data transfer costs when deploying VLAN attachments. What should you do?
正解:A
解答を投票する
Your organization uses a Shared VPC architecture with a host project and three service projects. You have Compute Engine instances that reside in the service projects. You have critical workloads in your on-premises data center. You need to ensure that the Google Cloud instances can resolve on-premises hostnames via the Dedicated Interconnect you deployed to establish hybrid connectivity. What should you do?
正解:C
解答を投票する
You are troubleshooting an application in your organization's Google Cloud network that is not functioning as expected. You suspect that packets are getting lost somewhere. The application sends packets intermittently at a low volume from a Compute Engine VM to a destination on your on-premises network through a pair of Cloud Interconnect VLAN attachments. You validated that the Cloud Next Generation Firewall (Cloud NGFW) rules do not have any deny statements blocking egress traffic, and you do not have any explicit allow rules. Following Google-recommended practices, you need to analyze the flow to see if packets are being sent correctly out of the VM to isolate the issue. What should you do?
正解:A
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)