exam questions

Exam Professional Cloud Network Engineer All Questions

View all questions & answers for the Professional Cloud Network Engineer exam

Exam Professional Cloud Network Engineer topic 1 question 58 discussion

Actual exam question from Google's Professional Cloud Network Engineer
Question #: 58
Topic #: 1
[All Professional Cloud Network Engineer Questions]

You need to configure a static route to an on-premises resource behind a Cloud VPN gateway that is configured for policy-based routing using the gcloud command.
Which next hop should you choose?

  • A. The default internet gateway
  • B. The IP address of the Cloud VPN gateway
  • C. The name and region of the Cloud VPN tunnel
  • D. The IP address of the instance on the remote side of the VPN tunnel
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
ESP_SAP
Highly Voted 3 years, 1 month ago
Correct Answer is (C): When you create a route based tunnel using the Cloud Console, Classic VPN performs both of the following tasks: Sets the tunnel's local and remote traffic selectors to any IP address (0.0.0.0/0) For each range in Remote network IP ranges, Google Cloud creates a custom static route whose destination (prefix) is the range's CIDR, and whose next hop is the tunnel. https://cloud.google.com/network-connectivity/docs/vpn/how-to/creating-static-vpns
upvoted 15 times
...
Komal697
Highly Voted 8 months, 4 weeks ago
Selected Answer: B
Option B is correct because in a policy-based VPN, routing is based on policies that are defined for each connection. These policies specify the source IP ranges, destination IP ranges, and protocols that are permitted for a connection. Because policy-based routing is used, traffic must be sent to the IP address of the Cloud VPN gateway so that the appropriate policy can be applied and the traffic can be forwarded to the on-premises resource. Therefore, the next hop for the static route should be the IP address of the Cloud VPN gateway.
upvoted 7 times
Komal697
8 months, 4 weeks ago
Option A, choosing the default internet gateway, is incorrect because it would direct traffic to the public internet rather than the on-premises resource behind the VPN gateway. Option C, choosing the name and region of the Cloud VPN tunnel, is also incorrect because it specifies the VPN tunnel itself rather than the next hop for traffic to reach the on-premises resource behind the VPN gateway. Option D, choosing the IP address of the instance on the remote side of the VPN tunnel, is incorrect because it would not account for any policy-based routing or routing rules that may be in place on the VPN gateway. Additionally, it assumes that there is only one instance on the remote side of the VPN tunnel, which may not be the case.
upvoted 2 times
...
...
Gurminderjit
Most Recent 1 week, 5 days ago
I will go with C
upvoted 1 times
...
YushiSato
2 weeks, 1 day ago
Selected Answer: C
I think C is correct. We can use gcloud compute routes create command. The options of this command can be used to achieve the objective. https://cloud.google.com/sdk/gcloud/reference/compute/routes/create
upvoted 2 times
...
PotatoGCP
2 months, 1 week ago
Selected Answer: C
https://cloud.google.com/network-connectivity/docs/vpn/how-to/creating-static-vpns#create_a_gateway_and_tunnel
upvoted 2 times
...
bus_karan19
2 months, 1 week ago
Selected Answer: C
next hop is cloud vpn tunnel
upvoted 2 times
...
sierra1784
2 months, 4 weeks ago
Selected Answer: C
gcloud compute routes create ROUTE_NAME \ --destination-range=REMOTE_IP_RANGE \ --next-hop-vpn-tunnel=TUNNEL_NAME \ --network=NETWORK \ --next-hop-vpn-tunnel-region=REGION \ --project=PROJECT_ID
upvoted 4 times
...
hoai_nam_1512
3 months, 2 weeks ago
Selected Answer: C
Next hop: Specify VPN tunnel and choose the name
upvoted 2 times
...
gcpengineer
3 months, 3 weeks ago
Selected Answer: C
Sets the tunnel's local and remote traffic selectors to any IP address (0.0.0.0/0). For each range in Remote network IP ranges, Google Cloud creates a custom static route whose destination (prefix) is the range's CIDR and whose next hop is the tunnel.
upvoted 2 times
...
vishnuramac
4 months, 1 week ago
Selected Answer: C
Answer is C. https://cloud.google.com/network-connectivity/docs/vpn/how-to/creating-static-vpns#:~:text=Create%20a%20static%20route
upvoted 2 times
...
samuelmorher
5 months ago
Selected Answer: B
Solution B
upvoted 2 times
...
pk349
11 months, 2 weeks ago
• C. The name and region ***** of the Cloud VPN tunnel
upvoted 1 times
...
AzureDP900
1 year ago
C. The name and region of the Cloud VPN tunnel
upvoted 1 times
...
Mr_MIXER007
1 year, 2 months ago
Selected Answer: C
CCCCCCCCCCC
upvoted 3 times
...
kumarp6
1 year, 11 months ago
Answer is : C
upvoted 1 times
...
EranSolstice
2 years, 2 months ago
Likely C. The gcloud certainly support that parameter. https://cloud.google.com/sdk/gcloud/reference/compute/routes/create Worth to mention that this apply only for the "classic VPN" product that will be phased out in March 2022. HA VPN cannot be referenced that way ( they do not support static route, BGP only ).
upvoted 2 times
...
Vidyasagar
2 years, 9 months ago
C is correct
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago