Free Preparation Discussions
MENU
Google Professional Cloud Network Engineer Exam Questions
- Topic 1: Managing and monitoring network operations/ Designing a container IP addressing plan for Google Kubernetes Engine
- Topic 2: Optimizing network resources/ Load balancer and CDN location/ Designing a hybrid network. Considerations Using interconnect, Failover and disaster recovery strategy
- Topic 3: Designing the overall network architecture. Considerations Hybrid connectivity, Container networking, Options for high availability
- Topic 4: Implementing a GCP Virtual Private Cloud (VPC)/ Creating a shared VPC and explaining how to share subnets with other projects
- Topic 5: Differences between Google Cloud Networking and other cloud platforms/ Designing, planning, and prototyping a GCP network
- Topic 6: Configuring and maintaining Google Kubernetes Engine clusters/ Configuring and maintaining Google Kubernetes Engine clusters
- Topic 7: Configuring GCP VPC resources/ Failover and disaster recovery strategy/ Target network tags and service accounts
- Topic 8: Shared vs. standalone VPC interconnect access/ Choosing the appropriate load balancing options
- Topic 9: Microsegmentation for security purposes/ Designing a Virtual Private Cloud (VPC)/ VPC-native clusters using alias IPs
Free Google Professional Cloud Network Engineer Exam Actual Questions
Note: Premium Questions for Professional Cloud Network Engineer were last updated On Mar. 29, 2025 (see below)
Your organization has a new security policy that requires you to monitor all egress traffic payloads from your virtual machines in the us-west2 region. You deployed an intrusion detection system (IDS) virtual appliance in the same region to meet the new policy. You now need to integrate the IDS into the environment to monitor all egress traffic payloads from us-west2. What should you do?
Packet Mirroring with an internal TCP/UDP load balancer allows for comprehensive monitoring of egress traffic, which includes payloads. This is required for integration with an IDS for detailed inspection of traffic payloads, meeting the security policy needs for monitoring and detection.
Your organization recently exposed a set of services through a global external Application Load Balancer. After conducting some testing, you observed that responses would intermittently yield a non-HTTP 200 response. You need to identify the error. What should you do? (Choose 2 answers)
To troubleshoot the intermittent non-HTTP 200 responses, you should enable and review health check logs and log the backend service's responses in Cloud Logging. Reviewing the statusDetails field helps identify the cause of the error. Enabling logging on the load balancer and backend service provides visibility into the issue.
You have several VMs across multiple VPCs in your cloud environment that require access to internet endpoints. These VMs cannot have public IP addresses due to security policies, so you plan to use Cloud NAT to provide outbound internet access. Within your VPCs, you have several subnets in each region. You want to ensure that only specific subnets have access to the internet through Cloud NAT. You want to avoid any unintentional configuration issues caused by other administrators and align to Google-recommended practices. What should you do?
Using an organizational policy with the restrictCloudNATUsage constraint allows you to limit Cloud NAT usage to specific subnets, ensuring that only the necessary subnets can access the internet. This method aligns with Google-recommended practices for controlling Cloud NAT configurations across multiple VPCs and regions.
Your team deployed two applications in GKE that are exposed through an external Application Load Balancer. When queries are sent to www.mountkirkgames.com/sales and www.mountkirkgames.com/get-an-analysis, the correct pages are displayed. However, you have received complaints that www.mountkirkgames.com yields a 404 error. You need to resolve this error. What should you do?
The 404 error is occurring because there is no default backend defined for requests to the root URL. Defining the default backend in the Ingress YAML file ensures that requests to www.mountkirkgames.com are routed to the correct service.
Your organization recently created a sandbox environment for a new cloud deployment. To have parity with the production environment, a pair of Compute Engine instances with multiple network interfaces (NICs) were deployed. These Compute Engine instances have a NIC in the Untrusted VPC (10.0.0.0/23) and a NIC in the Trusted VPC (10.128.0.0/9). A HA VPN tunnel has been established to the on-premises environment from the Untrusted VPC. Through this pair of VPN tunnels, the on-premises environment receives the route advertisements for the Untrusted and Trusted VPCs. In return, the on-premises environment advertises a number of CIDR ranges to the Untrusted VPC. However, when you tried to access one of the test services from the on-premises environment to the Trusted VPC, you received no response. You need to configure a highly available solution to enable the on-premises users to connect to the services in the Trusted VPC. What should you do?
The solution requires creating internal passthrough load balancers for both VPCs, with custom static routes pointing to each load balancer. This ensures connectivity between the on-premises environment and the Trusted VPC via the Untrusted VPC.
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Gregoria
Nieves
28 days agoLisbeth
2 months agoMarta
2 months agoStacey
3 months agoValentine
3 months agoJunita
3 months agoKati
4 months agoAvery
4 months agoGail
4 months agoAleta
4 months agoJenelle
4 months agoJenise
5 months agoMaddie
5 months agoBernardo
5 months agoEmily
5 months agoMona
5 months agoMayra
6 months agoCorazon
6 months agoAdrianna
6 months agoRemona
6 months agoShalon
6 months agoAleisha
7 months agoLera
7 months agoAngelica
7 months agoVeronica
8 months agoJestine
9 months agoLorean
9 months agoQuentin
9 months agoLisha
9 months ago