ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Associate Cloud Engineer All Questions

View all questions & answers for the Associate Cloud Engineer exam
Go to Exam

Exam Associate Cloud Engineer topic 1 question 40 discussion

Actual exam question from Google's Associate Cloud Engineer
Question #: 40
Topic #: 1
[All Associate Cloud Engineer Questions]

You have an instance group that you want to load balance. You want the load balancer to terminate the client SSL session. The instance group is used to serve a public web application over HTTPS. You want to follow Google-recommended practices. What should you do?

  • A. Configure an HTTP(S) load balancer.
  • B. Configure an internal TCP load balancer.
  • C. Configure an external SSL proxy load balancer.
  • D. Configure an external TCP proxy load balancer.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by endc30 at March 19, 2020, 11:56 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Gini
Highly Voted 5 years ago
According to the documentation of SSL Proxy Load Balacing on Google, "SSL Proxy Load Balancing is intended for non-HTTP(S) traffic. For HTTP(S) traffic, we recommend that you use HTTP(S) Load Balancing." in my opinion A should be the most suitable choice.
upvoted 62 times
yvinisiupacuando
3 years, 11 months ago
Agree with you but, A is not the most suitable choice, it is the only choice, as the other Load Balancers cannot route HTTP(S) traffic.
upvoted 17 times
...
...
Agents89
Highly Voted 5 years ago
For HTTP(s) Load balancer, the client SSL session terminates at the load balancer. A is the correct option.
upvoted 29 times
...
d6685b2
Most Recent 11 months, 1 week ago
why A is correcte ?
upvoted 1 times
JackSkeletonCoder
7 months, 1 week ago
In opt B, Internal tcp only deals with ip and ports in a vpc i.e 'internally' and does not deal with http/s or ssl/tls In opt C external SSL can serve application over https but not the ssl termination part. In opt D external TCP only deals with web application over HTTP and not the secured one. To top it off, it can't even terminate SSL session. Hence the only viable option is HTTP(S) load balancer.
upvoted 3 times
...
...
Captain1212
1 year, 7 months ago
Selected Answer: A
google recommend https for terminate the ssl session so A seems more legit
upvoted 1 times
...
sthapit
1 year, 8 months ago
Question mentions HTTPS, SO A is the correct answer.
upvoted 2 times
...
Buruguduystunstugudunstuy
2 years, 2 months ago
Selected Answer: A
Answer A is correct. Google recommends using an HTTP(S) load balancer for terminating SSL sessions and load-balancing traffic to an instance group serving a public web application over HTTPS. Answer B is incorrect because it is an internal load balancer, which is not suitable for serving public web applications. Internal load balancers are used for private/internal applications. Answer C is incorrect because SSL proxy load balancers do not terminate the SSL session, instead they pass the SSL traffic directly to the backends without decrypting it. SSL proxy load balancers are used when you need to ensure that SSL is used end-to-end between the client and the backend, and when you want to offload SSL processing from the backends. Answer D is incorrect because TCP proxy load balancers do not terminate SSL sessions. TCP proxy load balancers are used for non-HTTP traffic and can balance traffic at the TCP layer, but they do not have the ability to terminate SSL sessions.
upvoted 23 times
[Removed]
2 years, 1 month ago
When using External SSL Proxy Load Balancing for your SSL traffic, user SSL (TLS) connections are terminated at the load balancing layer, and then proxied to the closest available backend instances by using either SSL (recommended) or TCP. For the types of backends that are supported, see Backends. https://cloud.google.com/load-balancing/docs/ssl/
upvoted 1 times
...
chikorita
2 years ago
yo never fail us, my lord!
upvoted 1 times
...
...
leogor
2 years, 6 months ago
Selected Answer: A
HTTP(S) load balancer.
upvoted 1 times
...
AzureDP900
2 years, 10 months ago
I will go with A
upvoted 1 times
...
Akash7
2 years, 10 months ago
A is correct. According to this guide for setting up an HTTP (S) load balancer in GCP: The client SSL session terminates at the load balancer. Sessions between the load balancer and the instance can either be HTTPS (recommended) or HTTP.
upvoted 1 times
...
haroldbenites
2 years, 11 months ago
Go for C. It dont say Global balancer.
upvoted 1 times
...
Imttt
2 years, 11 months ago
Selected Answer: A
Correct A
upvoted 2 times
...
karim_chaara
3 years, 4 months ago
Correct answer is A - HTTP LB for SSL proxy, its doest support HTTP traffic "SSL Proxy Load Balancing is intended for non-HTTP(S) traffic. For HTTP(S) traffic, we recommend that you use HTTP(S) Load Balancing. " https://cloud.google.com/load-balancing/docs/ssl
upvoted 5 times
...
shawnkkk
3 years, 5 months ago
A. Configure an HTTP(S) load balancer.
upvoted 1 times
...
vishnukumartr
3 years, 5 months ago
A. Configure an HTTP(S) load balancer.
upvoted 1 times
...
Jaira1256
3 years, 5 months ago
Ans is A
upvoted 1 times
...
Rameshmfm
3 years, 5 months ago
A- please refer the this link - https://cloud.google.com/load-balancing/docs/choosing-load-balancer
upvoted 2 times
...
sidharthwader
3 years, 9 months ago
No doubt its answer is (A) in Azure its application gateway. These both are layer 7 traffic load balancer
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago