Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 111–120 of 492

Q111

What happens when you configure a firewall rule to allow all traffic?

  • A Increased security risks
  • B Network becomes unreachable
  • C All traffic is blocked
  • D Only outbound traffic allowed
Explanation Allowing all traffic exposes the network to potential attacks; the other options mischaracterize the effects.
Q112

Which service is primarily used for load balancing in Google Cloud?

  • A Cloud Load Balancing
  • B Cloud DNS
  • C Cloud Functions
  • D Cloud Storage
Explanation Cloud Load Balancing efficiently distributes traffic, while the others serve different purposes.
Q113

A company needs to implement a virtual private cloud (VPC) with two subnets for increased security. What is the correct way to achieve this?

  • A Use a single VPC with multiple subnets.
  • B Create two separate VPCs.
  • C Enable Shared VPC.
  • D Implement VPC Peering.
Explanation A single VPC with multiple subnets provides the required isolation, while the others involve unnecessary complexity.
Q114

What happens when you assign a IAM role to a service account in Google Cloud?

  • A The service account inherits permissions.
  • B Permissions are revoked instantly.
  • C User access is automatically granted.
  • D The role expires after 24 hours.
Explanation IAM roles provide the service account with the necessary permissions, while the others misrepresent IAM behavior.
Q115

Which service allows you to automate system operations in Google Cloud?

  • A Cloud Operations
  • B Cloud Scheduler
  • C Cloud Functions
  • D Cloud Run
Explanation Cloud Functions allows for event-driven automation, while the others focus on monitoring or job scheduling.
Q116

A company needs to ensure their VPC traffic is encrypted. What should they use?

  • A VPC peering
  • B Cloud VPN
  • C Cloud Interconnect
  • D Direct Peering
Explanation Cloud VPN provides encryption for traffic between networks, unlike the other options which do not guarantee encryption.
Q117

What happens when an instance exceeds its assigned quota for CPU resources?

  • A Instance is automatically upgraded
  • B Instance is terminated
  • C New instances cannot be created
  • D All instances restart automatically
Explanation Exceeding resource quotas prevents new instances from being created, while existing ones remain unaffected.
Q118

Which service allows for private connectivity to Google Cloud resources?

  • A Cloud VPN
  • B Cloud Interconnect
  • C VPC Peering
  • D Cloud Firewall
Explanation Cloud Interconnect provides direct private connectivity, while others serve different functions.
Q119

A company needs to apply consistent security policies across its cloud network segments. What should they use?

  • A Network Tags
  • B Service Accounts
  • C Firewall Rules
  • D Cloud Router
Explanation Firewall Rules apply security policies, whereas the others serve different purposes.
Q120

You are configuring a VPC. What happens when you add a firewall rule allowing ingress traffic on port 80?

  • A All outbound traffic blocked
  • B Only HTTP traffic allowed
  • C No effect on outgoing traffic
  • D Blocks traffic from internal IPs
Explanation Ingress rules affect incoming traffic only; outbound policies remain unchanged.