Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Exam Professional Cloud Network Engineer Topic 2 Question 98 Discussion

Actual exam question for Google's Professional Cloud Network Engineer exam
Question #: 98
Topic #: 2
[All Professional Cloud Network Engineer Questions]

Your organization's security team recently discovered that there is a high risk of malicious activities originating from some of your VMs connected to the internet. These malicious activities are currently undetected when TLS communication is used. You must ensure that encrypted traffic to the internet is inspected. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

Cloud NGFW Enterprise provides TLS inspection to detect and manage threats within encrypted traffic. Configuring firewall rules for TLS inspection enables granular monitoring and filtering, ensuring secure internet traffic.


by Makeda at Nov 18, 2024, 04:48 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Network Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Sonia
26 days ago
I'm not sure, but B sounds like it might be the most practical and efficient solution here. Cloud NGFW Enterprise seems like the way to go.
upvoted 0 times
Isreal
9 days ago
B) Use Cloud NGFW Enterprise. Create a firewall rule for egress traffic with the tls-inspect flag and associate the firewall rules with the VMs.
upvoted 0 times
...
Lezlie
14 days ago
A) Enable Cloud Armor TLS inspection policy, and associate the policy with the backend VMs.
upvoted 0 times
...
...
Susana
29 days ago
Haha, D is the funniest option! Analyzing VPC Flow Logs for TLS traffic? That's like trying to find a needle in a haystack!
upvoted 0 times
...
Ruthann
1 months ago
I think C is the way to go. Intercepting the TLS traffic at the VM level and analyzing the content is a more comprehensive approach.
upvoted 0 times
Leslie
11 days ago
I think option B might be more efficient in terms of managing the traffic flow and inspection process.
upvoted 0 times
...
Tomoko
11 days ago
I agree, option C seems like a thorough solution to tackle the malicious activities.
upvoted 0 times
...
...
Lavera
1 months ago
B is the way to go! Cloud NGFW Enterprise is the best option to inspect the encrypted traffic and protect against those malicious activities.
upvoted 0 times
Lore
3 days ago
D) Use Cloud NGFW Essentials. Create a firewall rule for egress traffic and enable VPC Flow Logs with the TLS inspect option. Analyze the output logs content and block the outputs that have malicious activities.
upvoted 0 times
...
Venita
5 days ago
D) Use Cloud NGFW Essentials. Create a firewall rule for egress traffic and enable VPC Flow Logs with the TLS inspect option. Analyze the output logs content and block the outputs that have malicious activities.
upvoted 0 times
...
Juliana
6 days ago
B is the way to go! Cloud NGFW Enterprise is the best option to inspect the encrypted traffic and protect against those malicious activities.
upvoted 0 times
...
Christiane
7 days ago
B) Use Cloud NGFW Enterprise. Create a firewall rule for egress traffic with the tls-inspect flag and associate the firewall rules with the VMs.
upvoted 0 times
...
Serina
19 days ago
A) Enable Cloud Armor TLS inspection policy, and associate the policy with the backend VMs.
upvoted 0 times
...
Reid
22 days ago
B) Agreed! Cloud NGFW Enterprise provides the necessary tools to inspect encrypted traffic and prevent malicious activities.
upvoted 0 times
...
Charlette
25 days ago
A) Enable Cloud Armor TLS inspection policy, and associate the policy with the backend VMs.
upvoted 0 times
...
Lacey
27 days ago
B) Use Cloud NGFW Enterprise. Create a firewall rule for egress traffic with the tls-inspect flag and associate the firewall rules with the VMs.
upvoted 0 times
...
...
Wilburn
2 months ago
I'm not sure about option B. I think option D could also work well by enabling VPC Flow Logs with the TLS inspect option to analyze and block malicious activities.
upvoted 0 times
...
Trina
2 months ago
I agree with Brendan. Option B seems like the most effective way to inspect encrypted traffic to the internet and prevent malicious activities.
upvoted 0 times
...
Brendan
2 months ago
I think option B sounds like a good solution. Using Cloud NGFW Enterprise with a firewall rule for egress traffic seems like a solid plan.
upvoted 0 times
...

Save Cancel