ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Security Engineer All Questions

View all questions & answers for the Professional Cloud Security Engineer exam
Go to Exam

Exam Professional Cloud Security Engineer topic 1 question 123 discussion

Actual exam question from Google's Professional Cloud Security Engineer
Question #: 123
Topic #: 1
[All Professional Cloud Security Engineer Questions]

You need to connect your organization's on-premises network with an existing Google Cloud environment that includes one Shared VPC with two subnets named
Production and Non-Production. You are required to:
✑ Use a private transport link.
✑ Configure access to Google Cloud APIs through private API endpoints originating from on-premises environments.
✑ Ensure that Google Cloud APIs are only consumed via VPC Service Controls.
What should you do?

  • A. 1. Set up a Cloud VPN link between the on-premises environment and Google Cloud. 2. Configure private access using the restricted.googleapis.com domains in on-premises DNS configurations.
  • B. 1. Set up a Partner Interconnect link between the on-premises environment and Google Cloud. 2. Configure private access using the private.googleapis.com domains in on-premises DNS configurations.
  • C. 1. Set up a Direct Peering link between the on-premises environment and Google Cloud. 2. Configure private access for both VPC subnets.
  • D. 1. Set up a Dedicated Interconnect link between the on-premises environment and Google Cloud. 2. Configure private access using the restricted.googleapis.com domains in on-premises DNS configurations.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by ExamQnA at May 21, 2022, 2:40 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ExamQnA
Highly Voted 11 months, 1 week ago
Ans: D restricted.googleapis.com (199.36.153.4/30) only provides access to Cloud and Developer APIs that support VPC Service Controls. VPC Service Controls are enforced for these services https://cloud.google.com/vpc/docs/configure-private-google-access-hybrid
upvoted 13 times
...
AzureDP900
Most Recent 5 months, 3 weeks ago
D. 1. Set up a Dedicated Interconnect link between the on-premises environment and Google Cloud. 2. Configure private access using the restricted.googleapis.com domains in on-premises DNS configurations.
upvoted 3 times
...
sumundada
9 months, 1 week ago
Selected Answer: D
restricted.googleapis.com makes it clear choice
upvoted 4 times
...
cloudprincipal
10 months, 3 weeks ago
Selected Answer: D
Tough call between A and D. "✑ Use a private transport link" pushes me towards VPN connection, but the dedicated interconnect probably also fulfills that.
upvoted 2 times
Aiffone
9 months, 3 weeks ago
Not a tough call, VPN happens over the internet and isn't as private as dedicated interconnect...makes it a straight D
upvoted 9 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago