Google Exam Professional Cloud Network Engineer Topic 3 Question 34 Discussion

Actual exam question for Google's Professional Cloud Network Engineer exam

Question #: 34
Topic #: 3

[All Professional Cloud Network Engineer Questions]

Your company offers a popular gaming service. Your instances are deployed with private IP addresses, and external access is granted through a global load balancer. You believe you have identified a potential malicious actor, but aren't certain you have the correct client IP address. You want to identify this actor while minimizing disruption to your legitimate users.

What should you do?

ACreate a Cloud Armor Policy rule that denies traffic and review necessary logs.

BCreate a Cloud Armor Policy rule that denies traffic, enable preview mode, and review necessary logs.

CCreate a VPC Firewall rule that denies traffic, enable logging and set enforcement to disabled, and review necessary logs.

DCreate a VPC Firewall rule that denies traffic, enable logging and set enforcement to enabled, and review necessary logs.

Show Suggested Answer

Suggested Answer: B

https://cloud.google.com/armor/docs/security-policy-concepts#preview_mode

by Daron at May 08, 2022, 02:36 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Network Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!