Exam Professional Cloud DevOps Engineer topic 1 question 177 discussion

Actual exam question from Google's Professional Cloud DevOps Engineer

Question #: 177
Topic #: 1

[All Professional Cloud DevOps Engineer Questions]

You receive a Cloud Monitoring alert indicating potential malicious activity on a node in your Google Kubernetes Engine (GKE) cluster. The alert suggests a possible compromised container running on that node. You need to isolate this node to prevent further compromise while investigating the issue. You also want to minimize disruption to applications running on the cluster. What should you do?

A. Taint the suspicious node to prevent Pods that have interacted with it from being scheduled on other nodes in the cluster
B. Scale down the deployment associated with the compromised container to zero other nodes
C. Restart the node to disrupt the malicious activity, and force all Pods to be restructured on other nodes.
D. Cordon the node to prevent new Pods from being scheduled, the drain the node to safely remove existing Pods and reschedule them to other nodes.

Show Suggested Answer

Suggested Answer: D 🗳️

by kitaharazyl at March 25, 2025, 1:46 a.m.

Comments

Submit Cancel

kitaharazyl

3 weeks, 4 days ago

Selected Answer: D

D. Cordon the node to prevent new Pods from being scheduled, the drain the node to safely remove existing Pods and reschedule them to other nodes.

upvoted 1 times

...

Exam Professional Cloud DevOps Engineer All Questions

View all questions & answers for the Professional Cloud DevOps Engineer exam

Exam Professional Cloud DevOps Engineer topic 1 question 177 discussion

Comments

kitaharazyl

SY0-701