ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Architect All Questions

View all questions & answers for the Professional Cloud Architect exam
Go to Exam

Exam Professional Cloud Architect topic 1 question 113 discussion

Actual exam question from Google's Professional Cloud Architect
Question #: 113
Topic #: 1
[All Professional Cloud Architect Questions]

Your organization has decided to restrict the use of external IP addresses on instances to only approved instances. You want to enforce this requirement across all of your Virtual Private Clouds (VPCs). What should you do?

  • A. Remove the default route on all VPCs. Move all approved instances into a new subnet that has a default route to an internet gateway.
  • B. Create a new VPC in custom mode. Create a new subnet for the approved instances, and set a default route to the internet gateway on this new subnet.
  • C. Implement a Cloud NAT solution to remove the need for external IP addresses entirely.
  • D. Set an Organization Policy with a constraint on constraints/compute.vmExternalIpAccess. List the approved instances in the allowedValues list.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by manhmaluc at July 1, 2021, 2:45 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
victory108
Highly Voted 3 years, 3 months ago
D. Set an Organization Policy with a constraint on constraints/compute.vmExternalIpAccess. List the approved instances in the allowedValues list.
upvoted 24 times
...
AnilKr
Highly Voted 3 years, 2 months ago
Ans - D, https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address#disableexternalip you might want to restrict external IP address so that only specific VM instances can use them. This option can help to prevent data exfiltration or maintain network isolation. Using an Organization Policy, you can restrict external IP addresses to specific VM instances with constraints to control use of external IP addresses for your VM instances within an organization or a project.
upvoted 20 times
...
plumbig11
Most Recent 3 months, 3 weeks ago
Selected Answer: D
to enforce this requirement across all of both Virtual Private Clouds (VPCs) you have to set an organization policy.
upvoted 1 times
...
james2033
4 months, 4 weeks ago
Selected Answer: D
https://cloud.google.com/compute/docs/ip-addresses/configure-static-external-ip-address#disableexternalip
upvoted 1 times
...
odacir
8 months ago
"You cannot apply the constraint retroactively. All VMs that have external IP addresses before you enable the policy retain their external IP addresses." https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address#disableexternalip It shouldn't be option D then
upvoted 1 times
...
beehive
1 year, 9 months ago
D is correct one. https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address#disableexternalip
upvoted 3 times
...
rascalbrick
1 year, 10 months ago
Show on my Exam,unfortunatekt im failed..:(
upvoted 2 times
...
megumin
1 year, 11 months ago
Selected Answer: D
D is ok
upvoted 1 times
...
AzureDP900
2 years ago
D is correct
upvoted 1 times
...
2M
2 years, 1 month ago
Selected Answer: D
option D
upvoted 2 times
...
ACE_ASPIRE
2 years, 2 months ago
I got this question in exam.
upvoted 2 times
Sur_Nikki
1 year, 5 months ago
Answer pleaase
upvoted 1 times
...
...
AzureDP900
2 years, 3 months ago
D is right. constraints/compute.vmExternalIpAccess
upvoted 1 times
...
JoeyCASD
2 years, 5 months ago
vote for D https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address#disableexternalip
upvoted 2 times
...
ss909098
2 years, 7 months ago
Selected Answer: D
D it is
upvoted 1 times
...
[Removed]
2 years, 8 months ago
Selected Answer: D
I got similar question on my exam. Answered D.
upvoted 3 times
...
technodev
2 years, 9 months ago
Got this question in my exam, answered D
upvoted 2 times
...
haroldbenites
2 years, 10 months ago
Go for D. https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address#disableexternalip
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago