• ホーム
  • ブログ
  • 究極のガイドはProfessional-Cloud-Architect最新2023年10月28日時間限定!今すぐダウンロード! [Q126-Q149]

究極のガイドはProfessional-Cloud-Architect最新2023年10月28日時間限定!今すぐダウンロード! [Q126-Q149]

Share

究極のガイドはProfessional-Cloud-Architect最新2023年10月28日時間限定!今すぐダウンロード!

2023年最新のな厳密検証された合格させるProfessional-Cloud-Architect試験にはリアル問題と解答


認定試験は、クラウドソリューションアーキテクチャの設計と計画、クラウドソリューションインフラストラクチャの管理とプロビジョニング、クラウドソリューション環境の最適化とセキュリティ、技術的およびビジネスプロセスの分析と最適化など、幅広いトピックをカバーしています。試験は、候補者が自己の組織のニーズを満たすスケーラブルで信頼性の高い、コスト効果の高いクラウドソリューションを設計・展開する能力を評価するために設計されています。


認定試験は、クラウドアーキテクチャとデザインに豊富な経験を持ち、Compute Engine、App Engine、Kubernetes Engine、およびCloud StorageなどのGoogle Cloud Platformサービスに堪能な個人を対象としています。候補者は、セキュリティ、パフォーマンス、およびコスト最適化を含むクラウドアーキテクチャ原則についても深い理解を持っている必要があります。

 

質問 # 126
You are creating an App Engine application that uses Cloud Datastore as its persistence layer. You need to retrieve several root entities for which you have the identifiers. You want to minimize the overhead in operations performed by Cloud Datastore. What should you do?

  • A. Create the Key object for each Entity and run multiple get operations, one operation for each entity
  • B. Create the Key object for each Entity and run a batch get operation
  • C. Use the identifiers to create a query filter and run a batch query operation
  • D. Use the identifiers to create a query filter and run multiple query operations, one operation for each entity

正解:C

解説:
Explanation
https://cloud.google.com/datastore/docs/concepts/entities#datastore-datastore-batch-upsert-nodejs


質問 # 127
Case Study: 3 - JencoMart Case Study
Company Overview
JencoMart is a global retailer with over 10,000 stores in 16 countries. The stores carry a range of goods, such as groceries, tires, and jewelry. One of the company's core values is excellent customer service. In addition, they recently introduced an environmental policy to reduce their carbon output by 50% over the next 5 years.
Company Background
JencoMart started as a general store in 1931, and has grown into one of the world's leading brands known for great value and customer service. Over time, the company transitioned from only physical stores to a stores and online hybrid model, with 25% of sales online. Currently, JencoMart has little presence in Asia, but considers that market key for future growth.
Solution Concept
JencoMart wants to migrate several critical applications to the cloud but has not completed a technical review to determine their suitability for the cloud and the engineering required for migration. They currently host all of these applications on infrastructure that is at its end of life and is no longer supported.
Existing Technical Environment
JencoMart hosts all of its applications in 4 data centers: 3 in North American and 1 in Europe, most applications are dual-homed.
JencoMart understands the dependencies and resource usage metrics of their on-premises architecture.
Application Customer loyalty portal
LAMP (Linux, Apache, MySQL and PHP) application served from the two JencoMart-owned U.S.
data centers.
Database
* Oracle Database stores user profiles




* PostgreSQL database stores user credentials
-homed in US West





Authenticates all users
Compute
* 30 machines in US West Coast, each machine has:



* 20 machines in US East Coast, each machine has:
-core CPU


RAID 1)

Storage
* Access to shared 100 TB SAN in each location
* Tape backup every week
Business Requirements
* Optimize for capacity during peak periods and value during off-peak periods
* Guarantee service availably and support
* Reduce on-premises footprint and associated financial and environmental impact.
* Move to outsourcing model to avoid large upfront costs associated with infrastructure purchase
* Expand services into Asia.
Technical Requirements
* Assess key application for cloud suitability.
* Modify application for the cloud.
* Move applications to a new infrastructure.
* Leverage managed services wherever feasible
* Sunset 20% of capacity in existing data centers
* Decrease latency in Asia
CEO Statement
JencoMart will continue to develop personal relationships with our customers as more people access the web. The future of our retail business is in the global market and the connection between online and in-store experiences. As a large global company, we also have a responsibility to the environment through 'green' initiatives and polices.
CTO Statement
The challenges of operating data centers prevents focus on key technologies critical to our long- term success. Migrating our data services to a public cloud infrastructure will allow us to focus on big data and machine learning to improve our service customers.
CFO Statement
Since its founding JencoMart has invested heavily in our data services infrastructure. However, because of changing market trends, we need to outsource our infrastructure to ensure our long- term success. This model will allow us to respond to increasing customer demand during peak and reduce costs.
For this question, refer to the JencoMart case study.
JencoMart has decided to migrate user profile storage to Google Cloud Datastore and the application servers to Google Compute Engine (GCE). During the migration, the existing infrastructure will need access to Datastore to upload the dat

  • A. Authenticate the on-premises infrastructure with a user account and provision service account keys for the VMs.
  • B. Provision service account keys for the on-premises infrastructure and use Google Cloud Platform (GCP) managed keys for the VMs
  • C. Deploy a custom authentication service on GCE/Google Container Engine (GKE) for the on- premises infrastructure and use GCP managed keys for the VMs.
  • D. What service account key-management strategy should you recommend?
  • E. Provision service account keys for the on-premises infrastructure and for the GCE virtual machines (VMs).

正解:A

解説:
Migrating data to Google Cloud Platform
Let's say that you have some data processing that happens on another cloud provider and you want to transfer the processed data to Google Cloud Platform. You can use a service account from the virtual machines on the external cloud to push the data to Google Cloud Platform. To do this, you must create and download a service account key when you create the service account and then use that key from the external process to call the Cloud Platform APIs.
References:
https://cloud.google.com/iam/docs/understanding-service-
accounts#migrating_data_to_google_cloud_platform


質問 # 128
You deploy your custom java application to google app engine.
It fails to deploy and gives you the following stack trace:

  • A. Digitally sign all of your JAR files and redeploy your application.
  • B. Upload missing JAR files and redeploy your application
  • C. Recompile the CLoakedServlet class using and MD5 hash instead of SHA1

正解:A


質問 # 129
For this question, refer to the Dress4Win case study. Considering the given business requirements, how would you automate the deployment of web and transactional data layers?

  • A. Deploy Nginx and Tomcat using Cloud Launcher. Deploy a MySQL server using Cloud Launcher. Deploy Jenkins to Compute Engine using Cloud Deployment Manager scripts.
  • B. Deploy Nginx and Tomcat using Cloud Deployment Manager to Compute Engine. Deploy a Cloud SQL server to replace MySQL. Deploy Jenkins using Cloud Deployment Manager.
  • C. Migrate Nginx and Tomcat to App Engine. Deploy a MySQL server using Cloud Launcher. Deploy Jenkins to Compute Engine using Cloud Launcher.
  • D. Migrate Nginx and Tomcat to App Engine. Deploy a Cloud Datastore server to replace the MySQL server in a high-availability configuration. Deploy Jenkins to Compute Engine using Cloud Launcher.

正解:D


質問 # 130
For this question, refer to the TerramEarth case study.
TerramEarth has equipped unconnected trucks with servers and sensors to collet telemetry data. Next year they want to use the data to train machine learning models. They want to store this data in the cloud while reducing costs. What should they do?

  • A. Push the telemetry data in real-time to a streaming dataflow job that compresses the data, and store it in Cloud Bigtable.
  • B. Push the telemetry data in Real-time to a streaming dataflow job that compresses the data, and store it in Google BigQuery.
  • C. Have the vehicle' computer compress the data in hourly snapshots, and store it in a Google Cloud storage (GCS) Nearline bucket.
  • D. Have the vehicle's computer compress the data in hourly snapshots, a Store it in a GCS Coldline bucket.

正解:D

解説:
Topic 3, JencoMart Case Study
Company Overview
JencoMart is a global retailer with over 10,000 stores in 16 countries. The stores carry a range of goods, such as groceries, tires, and jewelry. One of the company's core values is excellent customer service. In addition, they recently introduced an environmental policy to reduce their carbon output by 50% over the next 5 years.
Company Background
JencoMart started as a general store in 1931, and has grown into one of the world's leading brands known for great value and customer service. Over time, the company transitioned from only physical stores to a stores and online hybrid model, with 25% of sales online. Currently, JencoMart has little presence in Asia, but considers that market key for future growth.
Solution Concept
JencoMart wants to migrate several critical applications to the cloud but has not completed a technical review to determine their suitability for the cloud and the engineering required for migration. They currently host all of these applications on infrastructure that is at its end of life and is no longer supported.
Existing Technical Environment
JencoMart hosts all of its applications in 4 data centers: 3 in North American and 1 in Europe, most applications are dual-homed.
JencoMart understands the dependencies and resource usage metrics of their on-premises architecture.
Application Customer loyalty portal
LAMP (Linux, Apache, MySQL and PHP) application served from the two JencoMart- owned U.S. data centers.
Database
* Oracle Database stores user profiles
* 20 TB
* Complex table structure
* Well maintained, clean data
* Strong backup strategy
* PostgreSQL database stores user credentials
* Single-homed in US West
No redundancy
Backed up every 12 hours
* 100% uptime service level agreement (SLA)
* Authenticates all users
Compute
* 30 machines in US West Coast, each machine has:
Twin, dual core CPUs
32GB of RAM
* Twin 250 GB HDD (RAID 1)
* 20 machines in US East Coast, each machine has:
Single dual-core CPU
2 4 GB of RAM
* Twin 250 GB HDD (RAID 1)
Storage
* Access to shared 100 TB SAN in each location
* Tape backup every week
Business Requirements
* Optimize for capacity during peak periods and value during off-peak periods
* Guarantee service availably and support
* Reduce on-premises footprint and associated financial and environmental impact.
* Move to outsourcing model to avoid large upfront costs associated with infrastructure purchase
* Expand services into Asia.
Technical Requirements
* Assess key application for cloud suitability.
* Modify application for the cloud.
* Move applications to a new infrastructure.
* Leverage managed services wherever feasible
* Sunset 20% of capacity in existing data centers
* Decrease latency in Asia
CEO Statement
JencoMart will continue to develop personal relationships with our customers as more people access the web. The future of our retail business is in the global market and the connection between online and in-store experiences. As a large global company, we also have a responsibility to the environment through 'green' initiatives and polices.
CTO Statement
The challenges of operating data centers prevents focus on key technologies critical to our long-term success. Migrating our data services to a public cloud infrastructure will allow us to focus on big data and machine learning to improve our service customers.
CFO Statement
Since its founding JencoMart has invested heavily in our data services infrastructure.
However, because of changing market trends, we need to outsource our infrastructure to ensure our long-term success. This model will allow us to respond to increasing customer demand during peak and reduce costs.


質問 # 131
Case Study: 4 - Dress4Win case study
Company Overview
Dress4win is a web-based company that helps their users organize and manage their personal wardrobe using a website and mobile application. The company also cultivates an active social network that connects their users with designers and retailers. They monetize their services through advertising, e-commerce, referrals, and a freemium app model.
Company Background
Dress4win's application has grown from a few servers in the founder's garage to several hundred servers and appliances in a colocated data center. However, the capacity of their infrastructure is now insufficient for the application's rapid growth. Because of this growth and the company's desire to innovate faster, Dress4win is committing to a full migration to a public cloud.
Solution Concept
For the first phase of their migration to the cloud, Dress4win is considering moving their development and test environments. They are also considering building a disaster recovery site, because their current infrastructure is at a single location. They are not sure which components of their architecture they can migrate as is and which components they need to change before migrating them.
Existing Technical Environment
The Dress4win application is served out of a single data center location.
Databases:
MySQL - user data, inventory, static data
* Redis - metadata, social graph, caching
* Application servers:
Tomcat - Java micro-services
* Nginx - static content
* Apache Beam - Batch processing
* Storage appliances:
iSCSI for VM hosts
* Fiber channel SAN - MySQL databases
* NAS - image storage, logs, backups
* Apache Hadoop/Spark servers:
Data analysis
* Real-time trending calculations
* MQ servers:
Messaging
* Social notifications
* Events
* Miscellaneous servers:
Jenkins, monitoring, bastion hosts, security scanners
* Business Requirements
* Build a reliable and reproducible environment with scaled parity of production. Improve security by defining and adhering to a set of security and Identity and Access Management (IAM) best practices for cloud.
Improve business agility and speed of innovation through rapid provisioning of new resources.
Analyze and optimize architecture for performance in the cloud. Migrate fully to the cloud if all other requirements are met.
Technical Requirements
Evaluate and choose an automation framework for provisioning resources in cloud. Support failover of the production environment to cloud during an emergency. Identify production services that can migrate to cloud to save capacity.
Use managed services whenever possible.
Encrypt data on the wire and at rest.
Support multiple VPN connections between the production data center and cloud environment.
CEO Statement
Our investors are concerned about our ability to scale and contain costs with our current infrastructure. They are also concerned that a new competitor could use a public cloud platform to offset their up-front investment and freeing them to focus on developing better features.
CTO Statement
We have invested heavily in the current infrastructure, but much of the equipment is approaching the end of its useful life. We are consistently waiting weeks for new gear to be racked before we can start new projects. Our traffic patterns are highest in the mornings and weekend evenings; during other times, 80% of our capacity is sitting idle.
CFO Statement
Our capital expenditure is now exceeding our quarterly projections. Migrating to the cloud will likely cause an initial increase in spending, but we expect to fully transition before our next hardware refresh cycle. Our total cost of ownership (TCO) analysis over the next 5 years puts a cloud strategy between 30 to 50% lower than our current model.
For this question, refer to the Dress4Win case study.
As part of Dress4Win's plans to migrate to the cloud, they want to be able to set up a managed logging and monitoring system so they can handle spikes in their traffic load. They want to ensure that:
- The infrastructure can be notified when it needs to scale up and down to handle the ebb and flow of usage throughout the day
- Their administrators are notified automatically when their
application reports errors.
- They can filter their aggregated logs down in order to debug one
piece of the application across many hosts
Which Google StackDriver features should they use?

  • A. Monitoring, Trace, Debug, Logging
  • B. Monitoring, Logging, Alerts, Error Reporting
  • C. Monitoring, Logging, Debug, Error Report
  • D. Logging, Alerts, Insights, Debug

正解:A


質問 # 132
Your application needs to process credit card transactions. You want the smallest scope of Payment Card Industry (PCI) compliance without compromising the ability to analyze transactional data and trends relating to which payment methods are used.
How should you design your architecture?

  • A. Create separate projects that only process credit card data
  • B. Create separate subnetworks and isolate the components that process credit card data
  • C. Streamline the audit discovery phase by labeling all of the virtual machines (VMs) that process PCI data
  • D. Enable Logging export to Google BigQuery and use ACLs and views to scope the data shared with the auditor
  • E. Create a tokenizer service and store only tokenized data

正解:E

解説:
Explanation/Reference:
https://www.sans.org/reading-room/whitepapers/compliance/ways-reduce-pci-dss-audit-scope-tokenizing- cardholder-data-33194


質問 # 133
For this question, refer to the Dress4Win case study. Which of the compute services should be migrated as -is and would still be an optimized architecture for performance in the cloud?

  • A. RabbitMQ deployed using an unmanaged instance group
  • B. Jenkins, monitoring, bastion hosts, security scanners services deployed on custom machine types
  • C. Hadoop/Spark deployed using Cloud Dataproc Regional in High Availability mode
  • D. Web applications deployed using App Engine standard environment

正解:D


質問 # 134
You need to set up Microsoft SQL Server on GCP. Management requires that there's no downtime in case of a data center outage in any of the zones within a GCP region. What should you do?

  • A. Set up SQL Server on Compute Engine, using Always On Availability Groups using Windows Failover Clustering. Place nodes in different subnets.
  • B. Set up SQL Server Always On Availability Groups using Windows Failover Clustering. Place nodes in different zones.
  • C. Configure a Cloud Spanner instance with a regional instance configuration.
  • D. Configure a Cloud SQL instance with high availability enabled.

正解:B

解説:
https://cloud.google.com/sql/docs/sqlserver/configure-ha


質問 # 135
You are helping the QA team to roll out a new load-testing tool to test the scalability of your primary cloud services that run on Google Compute Engine with Cloud Bigtable.
Which three requirements should they include? (Choose three.)

  • A. Ensure that the load tests validate the performance of Cloud Bigtable
  • B. Ensure all third-party systems your services use is capable of handling high load
  • C. Instrument the load-testing tool and the target services with detailed logging and metrics collection
  • D. Instrument the production services to record every transaction for replay by the load-testing tool
  • E. Schedule the load-testing tool to regularly run against the production environment
  • F. Create a separate Google Cloud project to use for the load-testing environment

正解:A、C、F


質問 # 136
You have been engaged by your client to lead the migration of their application infrastructure to GCP. One of their current problems is that the on-premises high performance SAN is requiring frequent and expensive upgrades to keep up with the variety of workloads that are identified as follows: 20TB of log archives retained for legal reasons; 500 GB of VM boot/data volumes and templates; 500 GB of image thumbnails; 200 GB of customer session state data that allows customers to restart sessions even if off-line for several days.
Which of the following best reflects your recommendations for a cost-effective storage allocation?

  • A. Memcache backed by Cloud SQL for customer session state datA. Assorted local SSD-backed instances for VM boot/data volumes. Cloud Storage for log archives and thumbnails.
  • B. Local SSD for customer session state datA. Lifecycle-managed Cloud Storage for log archives, thumbnails, and VM boot/data volumes.
  • C. Memcache backed by Cloud Datastore for the customer session state datA. Lifecycle- managed Cloud Storage for log archives, thumbnails, and VM boot/data volumes.
  • D. Memcache backed by Persistent Disk SSD storage for customer session state datA. Assorted local SSDbacked instances for VM boot/data volumes. Cloud Storage for log archives and thumbnails.

正解:D

解説:
Explanation
https://cloud.google.com/compute/docs/disks


質問 # 137
A development manager is building a new application He asks you to review his requirements and identify what cloud technologies he can use to meet them. The application must
1. Be based on open-source technology for cloud portability
2. Dynamically scale compute capacity based on demand
3. Support continuous software delivery
4. Run multiple segregated copies of the same application stack
5. Deploy application bundles using dynamic templates
6. Route network traffic to specific services based on URL
Which combination of technologies will meet all of his requirements?

  • A. Google Container Engine, Jenkins, and Helm
  • B. Google Container Engine and Cloud Load Balancing
  • C. Google Compute Engine, Jenkins, and Cloud Load Balancing
  • D. Google Compute Engine and Cloud Deployment Manager

正解:A

解説:
Explanation
Helm for managing Kubernetes
Kubernetes can base on the URL to route traffic to different location (path)
https://cloud.google.com/kubernetes-engine/docs/tutorials/http-balancer eg.apiVersion: networking.k8s.io/v1beta1 kind: Ingress metadata:
name: fanout-ingress
spec:
rules:
- http:
paths:
- path: /*
backend:
serviceName: web
servicePort: 8080
- path: /v2/*
backend:
serviceName: web2
servicePort: 8080


質問 # 138
The development team has provided you with a Kubernetes Deployment file. You have no infrastructure yet and need to deploy the application. What should you do?

  • A. Use gcloud to create a Kubernetes cluster. Use Deployment Manager to create the deployment.
  • B. Use kubectl to create a Kubernetes cluster. Use Deployment Manager to create the deployment.
  • C. Use gcloud to create a Kubernetes cluster. Use kubectl to create the deployment.
  • D. Use kubectl to create a Kubernetes cluster. Use kubectl to create the deployment.

正解:B


質問 # 139
For this question, refer to the TerramEarth case study.
TerramEarth's CTO wants to use the raw data from connected vehicles to help identify approximately when a vehicle in the field will have a catastrophic failure. You want to allow analysts to centrally query the vehicle data. Which architecture should you recommend?

  • A. Option B
  • B. Option D
  • C. Option A
  • D. Option C

正解:B


質問 # 140
You are designing an application for use only during business hours. For the minimum viable product release, you'd like to use a managed product that automatically "scales to zero" so you don't incur costs when there is no activity.
Which primary compute resource should you choose?

  • A. AppEngine flexible environment
  • B. Compute Engine
  • C. Cloud Functions
  • D. Kubernetes Engine

正解:B


質問 # 141
Your company plans to migrate a multi-petabyte data set to the cloud. The data set must be available 24hrs a day. Your business analysts have experience only with using a SQL interface. How should you store the data to optimize it for ease of analysis?

  • A. Insert data into Google Cloud SQL.
  • B. Stream data into Google Cloud Datastore.
  • C. Load data into Google BigQuery.
  • D. Put flat files into Google Cloud Storage.

正解:C


質問 # 142
You are designing a mobile chat application. You want to ensure people cannot spoof chat messages, by providing a message were sent by a specific user.
What should you do

  • A. Use public key infrastructure (PKI) to encrypt the message client side using the originating user's private key.
  • B. Encrypt the message client side using block-based encryption with a shared key.
  • C. Use a trusted certificate authority to enable SSL connectivity between the client application and the server.
  • D. Tag messages client side with the originating user identifier and the destination user.

正解:C

解説:
Explanation
Encrypting each block and tagging each message at the client side is an overhead on the application. Best method which has been adopted since years is contacting the SSL provider and use the public certificate to encrypt the traffic between client and the server.


質問 # 143
You need to develop procedures to test a disaster plan for a mission-critical application. You want to use Google-recommended practices and native capabilities within GCP.
What should you do?

  • A. Use gcloud scripts to automate service provisioning. Use Activity Logs monitor and debug your tests.
  • B. Use Deployment Manager to automate service provisioning. Use Activity Logs to monitor and debug your tests.
  • C. Use gcloud scripts to automate service provisioning. Use Stackdriver to monitor and debug your tests.
  • D. Use Deployment Manager to automate service provisioning. Use Stackdriver to monitor and debug your tests.

正解:D


質問 # 144
You set up an autoscaling instance group to serve web traffic for an upcoming launch. After configuring the instance group as a backend service to an HTTP(S) load balancer, you notice that virtual machine (VM) instances are being terminated and re-launched every minute. The instances do not have a public IP address. You have verified the appropriate web response is coming from each instance using the curl command. You want to ensure the backend is configured correctly. What should you do?

  • A. Ensure that a firewall rule exists to allow load balancer health checks to reach the instances in the instance group.
  • B. Ensure that a firewall rule exists to allow source traffic on HTTP/HTTPS to reach the load balancer.
  • C. Assign a public IP to each instance and configure a firewall rule to allow the load balancer to reach the instance public IP.
  • D. Create a tag on each instance with the name of the load balancer. Configure a firewall rule with the name of the load balancer as the source and the instance tag as the destination.

正解:A

解説:
https://cloud.google.com/vpc/docs/using-firewalls
The best practice when configuration a health check is to check health and serve traffic on the same port. However, it is possible to perform health checks on one port, but serve traffic on another. If you do use two different ports, ensure that firewall rules and services running on instances are configured appropriately. If you run health checks and serve traffic on the same port, but decide to switch ports at some point, be sure to update both the backend service and the health check.
Backend services that do not have a valid global forwarding rule referencing it will not be health checked and will have no health status.
References:
https://cloud.google.com/compute/docs/load-balancing/http/backend-service


質問 # 145
You are developing your microservices application on Google Kubernetes Engine. During testing, you want to validate the behavior of your application in case a specific microservice should suddenly crash. What should you do?

  • A. Configure Istio's traffic management features to steer the traffic away from a crashing microservice.
  • B. Add a taint to one of the nodes of the Kubernetes cluster. For the specific microservice, configure a pod anti-affinity label that has the name of the tainted node as a value.
  • C. Use Istio's fault injection on the particular microservice whose faulty behavior you want to simulate.
  • D. Destroy one of the nodes of the Kubernetes cluster to observe the behavior.

正解:D


質問 # 146
You have created several preemptible Linux virtual machine instances using Google Compute Engine. You want to properly shut down your application before the virtual machines are preempted.
What should you do?

  • A. Create a shutdown script named k99.shutdown in the /etc/rc.6.d/ directory.
  • B. Create a shutdown script and use it as the value for a new metadata entry with the key shutdown- script in the Cloud Platform Console when you create the new virtual machine instance.
  • C. Create a shutdown script registered as a xinetd service in Linux and configure a Stackdnver endpoint check to call the service.
  • D. Create a shutdown script, registered as a xinetd service in Linux, and use the gcloud compute instances add-metadata command to specify the service URL as the value for a new metadata entry with the key shutdown-script-url

正解:B

解説:
https://cloud.google.com/compute/docs/shutdownscript


質問 # 147
Your organization has decided to restrict the use of external IP addresses on instances to only approved instances. You want to enforce this requirement across all of your Virtual Private Clouds (VPCs). What should you do?

  • A. Set an Organization Policy with a constraint on constraints/compute.vmExternalIpAccess. List the approved instances in the allowedValues list.
  • B. Implement a Cloud NAT solution to remove the need for external IP addresses entirely.
  • C. Remove the default route on all VPCs. Move all approved instances into a new subnet that has a default route to an internet gateway.
  • D. Create a new VPC in custom mode. Create a new subnet for the approved instances, and set a default route to the internet gateway on this new subnet.

正解:A

解説:
Reference:
https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address#disableexternalip you might want to restrict external IP address so that only specific VM instances can use them. This option can help to prevent data exfiltration or maintain network isolation. Using an Organization Policy, you can restrict external IP addresses to specific VM instances with constraints to control use of external IP addresses for your VM instances within an organization or a project.


質問 # 148
You have created several preemptible Linux virtual machine instances using Google Compute Engine. You want to properly shut down your application before the virtual machines are preempted. What should you do?

  • A. Create a shutdown script named k99.shutdown in the /etc/rc.6.d/ directory.
  • B. Create a shutdown script and use it as the value for a new metadata entry with the key shutdown-script in the Cloud Platform Console when you create the new virtual machine instance.
  • C. Create a shutdown script registered as a xinetd service in Linux and configure a Stackdnver endpoint check to call the service.
  • D. Create a shutdown script, registered as a xinetd service in Linux, and use the gcloud compute instances add-metadata command to specify the service URL as the value for a new metadata entry with the key shutdown-script-url

正解:B


質問 # 149
......


Google Professional-Cloud-Architect認定試験の準備をするために、候補者は、インストラクター主導のトレーニング、オンラインコース、自己ペースの学習資料などのさまざまなトレーニングオプションから選択できます。 Google Cloud Platformは、ドキュメント、チュートリアル、実践的なラボなどの無料のリソースを提供して、候補者が試験に必要なスキルと知識を獲得できるようにします。 Google Professional-Cloud-Architect認定試験に合格すると、クラウドアーキテクチャに関する個人の専門知識が示され、Google Cloudプラットフォームを使用して安全でスケーラブルで信頼性の高いクラウドソリューションを設計および管理する能力を検証します。

 

問題集全額返金保証付き!Professional-Cloud-Architect問題公式問題集:https://www.goshiken.com/Google/Professional-Cloud-Architect-mondaishu.html

厳密検証されたProfessional-Cloud-Architect試験問題集PDF[2023年最新] 時間限定無料アクセスGoShiken:https://drive.google.com/open?id=1uJ0Y4tP4HPAguHSLo6VMX-FU_e4Atd-F

関するブログ

もっと
Professional-Cloud-Architect無料問題集