Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Google Exam Associate Cloud Engineer Topic 1 Question 92 Discussion

Actual exam question for Google's Associate Cloud Engineer exam
Question #: 92
Topic #: 1
[All Associate Cloud Engineer Questions]

Your customer wants you to create a secure website with autoscaling based on the compute instance CPU load. You want to enhance performance by storing static content in Cloud Storage. Which resources are needed to distribute the user traffic?

Show Suggested Answer Hide Answer
Suggested Answer: C

An external HTTP(S) load balancer is a Google-recommended solution for distributing web traffic across multiple regions and zones, and providing high availability, scalability, and security for web applications. It supports both IPv4 and IPv6 addresses, and can handle SSL/TLS termination and encryption. It also integrates with Cloud CDN, Cloud Armor, and Cloud Identity-Aware Proxy for enhanced performance and protection. A managed instance group (MIG) can be used as a backend service for the HTTP(S) load balancer, and can automatically scale the number of VM instances based on the CPU load. A Cloud Storage bucket can also be used as a backend service for the HTTP(S) load balancer, and can serve static content such as images, videos, or HTML files. A URL map can be used to route requests to different backend services based on the path or host of the request. For example, a URL map can send requests for/static/*to the Cloud Storage bucket, and requests for/dynamic/*to the MIG. A managed SSL certificate can be used to secure the connection between the clients and the load balancer, and can be automatically provisioned and renewed by Google.

A is incorrect because an internal HTTP(S) load balancer is only visible within a VPC network, and not to the public internet. It is used for internal applications that need to communicate with other internal services. Identity-Aware Proxy is a service that provides secure access to web applications without using a VPN. It is not a load balancer, and it does not distribute user traffic.

B is incorrect because installing HTTPS certificates on the instance is not necessary, as the HTTP(S) load balancer can handle SSL/TLS termination and encryption. It is also more complex and less secure to manage the certificates on the instance level, as they need to be updated and synchronized across multiple instances.

D is incorrect because an external network load balancer is a TCP/UDP load balancer that operates at the network layer. It is not suitable for web applications that use HTTP(S) protocols, as it does not support SSL/TLS termination and encryption, URL maps, or Cloud Storage backends. It is also less efficient and scalable to forward the requests to the Cloud Storage from the web servers, as it adds an extra hop and latency.


HTTP(S) Load Balancing documentation

Setting up HTTP(S) Load Balancing with Cloud Storage

Creating and using SSL certificates

Choosing a load balancer

Contribute your Thoughts:

Van
2 months ago
That's a good point, security is definitely important. I see why option C would be a strong choice.
upvoted 0 times
...
Sharen
2 months ago
I disagree, I believe option C is more suitable as it includes a managed SSL certificate for security and load distribution.
upvoted 0 times
...
Van
2 months ago
I think option B is the best choice because it includes using an external HTTP(S) load balancer and a URL map to target static content to Cloud Storage.
upvoted 0 times
...
Iluminada
2 months ago
I think option B is a bit outdated. These days, it's better to use a managed SSL certificate to simplify the process and ensure better security.
upvoted 0 times
Brinda
1 months ago
User 3: Option C sounds like the way to go then.
upvoted 0 times
...
Keva
1 months ago
User 2: I agree, using a managed SSL certificate would be better.
upvoted 0 times
...
Sharika
1 months ago
I think option B is a bit outdated.
upvoted 0 times
...
...
Izetta
3 months ago
Haha, option D reminds me of the old days when we used to manually forward requests to the file server. Times have certainly changed!
upvoted 0 times
...
Shawnta
3 months ago
I'm not sure about the URL map for targeting the static content to Cloud Storage. Wouldn't it be more efficient to use a content delivery network (CDN) instead?
upvoted 0 times
Haley
1 months ago
C) An external HTTP(S) load balancer with a managed SSL certificate to distribute the load and a URL map to target the requests for the static content to the Cloud Storage backend.
upvoted 0 times
...
Toi
1 months ago
B) An external HTTP(S) load balancer to distribute the load and a URL map to target the requests for the static content to the Cloud Storage backend. Install the HTTPS certificates on the instance.
upvoted 0 times
...
Kaycee
2 months ago
D) An external network load balancer pointing to the backend instances to distribute the load evenly. The web servers will forward the request to the Cloud Storage as needed.
upvoted 0 times
...
Leoma
2 months ago
C) An external HTTP(S) load balancer with a managed SSL certificate to distribute the load and a URL map to target the requests for the static content to the Cloud Storage backend.
upvoted 0 times
...
Cletus
2 months ago
A) An internal HTTP(S) load balancer together with Identity-Aware Proxy to allow only HTTPS traffic.
upvoted 0 times
...
Janae
2 months ago
B) An external HTTP(S) load balancer to distribute the load and a URL map to target the requests for the static content to the Cloud Storage backend. Install the HTTPS certificates on the instance.
upvoted 0 times
...
Jamey
2 months ago
A) An internal HTTP(S) load balancer together with Identity-Aware Proxy to allow only HTTPS traffic.
upvoted 0 times
...
...
Glenn
3 months ago
Option C sounds like the most comprehensive solution to handle the customer's requirements. The external HTTPS load balancer with a managed SSL certificate is a great way to distribute the traffic and secure the website.
upvoted 0 times
Francine
2 months ago
I agree, using a managed SSL certificate will definitely help in securing the website and distributing the load efficiently.
upvoted 0 times
...
Basilia
3 months ago
Option C sounds like the most comprehensive solution to handle the customer's requirements. The external HTTPS load balancer with a managed SSL certificate is a great way to distribute the traffic and secure the website.
upvoted 0 times
...
...

Save Cancel