Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 161–170 of 492

Q161

You are configuring VPC peering between two projects. What must be done first?

  • A Enable Cloud Logging
  • B Create Service Networking
  • C Accept the peering request
  • D Define firewall rules
Explanation You must accept the peering request to establish the connection.
Q162

What happens when IAM permissions are applied to a project folder?

  • A Inherited by all sub-projects
  • B Overrides project permissions
  • C Not applicable
  • D Imposes additional restrictions
Explanation IAM permissions at the folder level are inherited by all child projects unless specifically overridden.
Q163

Which Google Cloud service is best for load balancing across regions?

  • A Cloud Load Balancing
  • B Compute Engine
  • C Cloud CDN
  • D Google Kubernetes Engine
Explanation Cloud Load Balancing automatically distributes traffic across regions, while others do not specialize in this feature.
Q164

A company needs a private connection to Google Cloud. What should they use?

  • A Cloud VPN
  • B Interconnect
  • C VPC Peering
  • D Cloud Router
Explanation Cloud Interconnect provides dedicated network connections to Google Cloud, while VPN and Peering serve different purposes.
Q165

What happens when you enable flow logs on a VPC network?

  • A Traffic is denied by default
  • B All packets are logged
  • C A rule is created automatically
  • D Network flow data is captured
Explanation Enabling flow logs captures information about the traffic flowing through the VPC, while the other options are incorrect.
Q166

Which service allows you to manage cloud resources using APIs?

  • A Google Cloud API
  • B Google Cloud Console
  • C Google Cloud Shell
  • D Google Stackdriver Monitoring
Explanation Google Cloud API provides programmatic access, while the others are management interfaces or services for monitoring.
Q167

A company needs to ensure their VPC has a private subnet isolated from the internet. What is the best action?

  • A Add a Cloud NAT gateway.
  • B Create firewall rules for external access.
  • C Create a subnet without a default route.
  • D Utilize VPC peering with public subnet.
Explanation A private subnet requires no default route; NAT and other options allow internet access.
Q168

What happens when you delete a custom route in a VPC?

  • A Traffic reroutes automatically.
  • B All instances lose internet access.
  • C Connections via that route are terminated.
  • D Nothing, it’s just a modification.
Explanation Deleting a route terminates traffic flow through it, while others are inaccurate descriptions of the outcome.
Q169

Which service provides a private global network for Google Cloud resources?

  • A Google Virtual Private Cloud (VPC)
  • B Google Compute Engine
  • C Google Cloud CDN
  • D Google Cloud Storage
Explanation Google VPC offers a secure and scalable private network, while the others serve different functions.
Q170

A company needs to connect its on-premises data center to Google Cloud securely. Which option is the best choice?

  • A Cloud VPN
  • B Cloud Router
  • C Dedicated Interconnect
  • D Cloud Pub/Sub
Explanation Dedicated Interconnect provides a high-capacity and low-latency connection, while Cloud VPN and Router are more complex and less optimal for dedicated connections.