ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Network Engineer All Questions

View all questions & answers for the Professional Cloud Network Engineer exam
Go to Exam

Exam Professional Cloud Network Engineer topic 1 question 130 discussion

Actual exam question from Google's Professional Cloud Network Engineer
Question #: 130
Topic #: 1
[All Professional Cloud Network Engineer Questions]

You are designing a hybrid cloud environment for your organization. Your Google Cloud environment is interconnected with your on-premises network using Cloud HA VPN and Cloud Router. The Cloud Router is configured with the default settings. Your on-premises DNS server is located at 192.168.20.88 and is protected by a firewall, and your Compute Engine resources are located at 10.204.0.0/24. Your Compute Engine resources need to resolve on-premises private hostnames using the domain corp.altostrat.com while still resolving Google Cloud hostnames. You want to follow Google-recommended practices. What should you do?

  • A. 1. Create a private forwarding zone in Cloud DNS for ‘corp.altostrat.com’ called corp-altostrat-com that points to 192.168.20.88.
    2. Configure your on-premises firewall to accept traffic from 10.204.0.0/24.
    3. Set a custom route advertisement on the Cloud Router for 10.204.0.0/24
  • B. 1. Create a private forwarding zone in Cloud DNS for ‘corp.altostrat.com’ called corp-altostrat-com that points to 192.168 20.88.
    2. Configure your on-premises firewall to accept traffic from 35.199.192.0/19
    3. Set a custom route advertisement on the Cloud Router for 35.199.192.0/19.
  • C. 1. Create a private forwarding zone in Cloud DNS for ‘corp .altostrat.com’ called corp-altostrat-com that points to 192.168.20.88.
    2. Configure your on-premises firewall to accept traffic from 10.204.0.0/24.
    3. Modify the /etc/resolv conf file on your Compute Engine instances to point to 192.168.20 88
  • D. 1. Create a private zone in Cloud DNS for ‘corp altostrat.com’ called corp-altostrat-com.
    2. Configure DNS Server Policies and create a policy with Alternate DNS servers to 192.168.20.88.
    3. Configure your on-premises firewall to accept traffic from 35.199.192.0/19.
    4. Set a custom route advertisement on the Cloud Router for 35.199.192.0/19.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by ccieman2016 at Dec. 3, 2022, 9:36 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ccieman2016
Highly Voted 1 year, 4 months ago
Selected Answer: B
Easy, B for sure. https://cloud.google.com/dns/docs/zones/forwarding-zones A and C) wrong, source address request is reserved 35.199.192.0/19. D) wrong, local zone setup created black role to DNS zone, scenario required forwarding to onpremise. B
upvoted 8 times
mity99
1 year, 1 month ago
35.199.192.0/19 Cloud DNS uses the 35.199.192.0/19 source range for all customers. This range is only accessible from a Google Cloud VPC network or from an on-premises network connected to a VPC network.
upvoted 2 times
...
...
pfilourenco
Highly Voted 1 year, 4 months ago
Selected Answer: B
B is the correct. "To make sure that you can query DNS records in your on-premises environment, set up a forwarding zone for the domain that you're using on-premises for your corporate resources (such as corp.example.com). " https://cloud.google.com/dns/docs/best-practices#use_forwarding_zones_to_query_on-premises_servers
upvoted 5 times
...
ananta93
Most Recent 8 months ago
Selected Answer: B
Cloud DNS uses the 35.199.192.0/19 source range for all customers. This range is only accessible from a Google Cloud VPC network or from an on-premises network connected to a VPC network. https://cloud.google.com/dns/docs/zones/forwarding-zones
upvoted 1 times
...
AzureDP900
1 year, 4 months ago
B. 1. Create a private forwarding zone in Cloud DNS for ‘corp.altostrat.com’ called corp-altostrat-com that points to 192.168 20.88. 2. Configure your on-premises firewall to accept traffic from 35.199.192.0/19 3. Set a custom route advertisement on the Cloud Router for 35.199.192.0/19
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago