ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Architect All Questions

View all questions & answers for the Professional Cloud Architect exam
Go to Exam

Exam Professional Cloud Architect topic 1 question 193 discussion

Actual exam question from Google's Professional Cloud Architect
Question #: 193
Topic #: 1
[All Professional Cloud Architect Questions]

You are configuring the cloud network architecture for a newly created project in Google Cloud that will host applications in Compute Engine. Compute Engine virtual machine instances will be created in two different subnets (sub-a and sub-b) within a single region:
• Instances in sub-a will have public IP addresses.
• Instances in sub-b will have only private IP addresses.

To download updated packages, instances must connect to a public repository outside the boundaries of Google Cloud. You need to allow sub-b to access the external repository. What should you do?

  • A. Enable Private Google Access on sub-b.
  • B. Configure Cloud NAT and select sub-b in the NAT mapping section.
  • C. Configure a bastion host instance in sub-a to connect to instances in sub-b.
  • D. Enable Identity-Aware Proxy for TCP forwarding for instances in sub-b.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Murtuza at Sept. 24, 2023, 6:06 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
piyu1515
3 months, 2 weeks ago
Selected Answer: C
Answer is B. Cloud Nat is the right service
upvoted 1 times
...
Amrita2012
8 months, 1 week ago
Selected Answer: B
https://www.youtube.com/watch?v=4uskhIk7LdM
upvoted 1 times
...
cchiaramelli
11 months, 2 weeks ago
Selected Answer: B
IMHO A -> It doesn't make sense, Public Google Access allows you to access Google APIs without an external IP, which doesnt solve the problem C -> Bastion host is for the opposite purpose; accessing a machine administratively from the outside without an external IP, not a machine without an external IP accessing the outside. D -> It doesn't make sense. B -> It's the recommended solution for GCP
upvoted 4 times
...
ampmusic
11 months, 3 weeks ago
Selected Answer: B
Answer is B. Cloud Nat is the right service to use when you want to connect to reach services on internet without exposing the vm with an external IP
upvoted 2 times
...
RKS_2021
1 year ago
I will Select C. As there will many Instances will require internet access to update the OS.
upvoted 1 times
RKS_2021
1 year ago
Changed answer to B, Cloud NAT
upvoted 1 times
...
...
ductrinh
1 year ago
Selected Answer: B
nat is what you need for non-external vm can reach the internet B is the only 1
upvoted 1 times
...
dsyouness
1 year ago
Selected Answer: B
Cloud NAT allows the resources in a private subnet to access the internet—for updates, patching, config management, and more—in a controlled and efficient manner.
upvoted 2 times
...
Murtuza
1 year ago
Correct answer is B you will need NAT to access repositories hosted on the public internet
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago