Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Exam Professional Cloud Network Engineer Topic 2 Question 98 Discussion

Actual exam question for Google's Professional Cloud Network Engineer exam
Question #: 98
Topic #: 2
[All Professional Cloud Network Engineer Questions]

Your organization's security team recently discovered that there is a high risk of malicious activities originating from some of your VMs connected to the internet. These malicious activities are currently undetected when TLS communication is used. You must ensure that encrypted traffic to the internet is inspected. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

Cloud NGFW Enterprise provides TLS inspection to detect and manage threats within encrypted traffic. Configuring firewall rules for TLS inspection enables granular monitoring and filtering, ensuring secure internet traffic.


by Makeda at Nov 18, 2024, 04:48 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Network Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Sonia
2 months ago
I'm not sure, but B sounds like it might be the most practical and efficient solution here. Cloud NGFW Enterprise seems like the way to go.
upvoted 0 times
Penney
30 days ago
D) Use Cloud NGFW Essentials. Create a firewall rule for egress traffic and enable VPC Flow Logs with the TLS inspect option. Analyze the output logs content and block the outputs that have malicious activities.
upvoted 0 times
...
Mozell
1 months ago
C) Configure a TLS agent on every VM to intercept TLS traffic before it reaches the internet. Configure Sensitive Data Protection to analyze and allow/deny the content.
upvoted 0 times
...
Isreal
2 months ago
B) Use Cloud NGFW Enterprise. Create a firewall rule for egress traffic with the tls-inspect flag and associate the firewall rules with the VMs.
upvoted 0 times
...
Lezlie
2 months ago
A) Enable Cloud Armor TLS inspection policy, and associate the policy with the backend VMs.
upvoted 0 times
...
...
Susana
2 months ago
Haha, D is the funniest option! Analyzing VPC Flow Logs for TLS traffic? That's like trying to find a needle in a haystack!
upvoted 0 times
...
Ruthann
2 months ago
I think C is the way to go. Intercepting the TLS traffic at the VM level and analyzing the content is a more comprehensive approach.
upvoted 0 times
Leslie
2 months ago
I think option B might be more efficient in terms of managing the traffic flow and inspection process.
upvoted 0 times
...
Tomoko
2 months ago
I agree, option C seems like a thorough solution to tackle the malicious activities.
upvoted 0 times
...
...
Lavera
3 months ago
B is the way to go! Cloud NGFW Enterprise is the best option to inspect the encrypted traffic and protect against those malicious activities.
upvoted 0 times
Lore
2 months ago
D) Use Cloud NGFW Essentials. Create a firewall rule for egress traffic and enable VPC Flow Logs with the TLS inspect option. Analyze the output logs content and block the outputs that have malicious activities.
upvoted 0 times
...
Venita
2 months ago
D) Use Cloud NGFW Essentials. Create a firewall rule for egress traffic and enable VPC Flow Logs with the TLS inspect option. Analyze the output logs content and block the outputs that have malicious activities.
upvoted 0 times
...
Juliana
2 months ago
B is the way to go! Cloud NGFW Enterprise is the best option to inspect the encrypted traffic and protect against those malicious activities.
upvoted 0 times
...
Christiane
2 months ago
B) Use Cloud NGFW Enterprise. Create a firewall rule for egress traffic with the tls-inspect flag and associate the firewall rules with the VMs.
upvoted 0 times
...
Serina
2 months ago
A) Enable Cloud Armor TLS inspection policy, and associate the policy with the backend VMs.
upvoted 0 times
...
Reid
2 months ago
B) Agreed! Cloud NGFW Enterprise provides the necessary tools to inspect encrypted traffic and prevent malicious activities.
upvoted 0 times
...
Charlette
2 months ago
A) Enable Cloud Armor TLS inspection policy, and associate the policy with the backend VMs.
upvoted 0 times
...
Lacey
2 months ago
B) Use Cloud NGFW Enterprise. Create a firewall rule for egress traffic with the tls-inspect flag and associate the firewall rules with the VMs.
upvoted 0 times
...
...
Wilburn
3 months ago
I'm not sure about option B. I think option D could also work well by enabling VPC Flow Logs with the TLS inspect option to analyze and block malicious activities.
upvoted 0 times
...
Trina
3 months ago
I agree with Brendan. Option B seems like the most effective way to inspect encrypted traffic to the internet and prevent malicious activities.
upvoted 0 times
...
Brendan
3 months ago
I think option B sounds like a good solution. Using Cloud NGFW Enterprise with a firewall rule for egress traffic seems like a solid plan.
upvoted 0 times
...

Save Cancel