Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 171–180 of 492

Q171

What happens when a Cloud Load Balancer detects unhealthy backend instances?

  • A Traffic rerouted to healthy instances
  • B Load balancer shuts down
  • C All traffic drops
  • D Monitoring alerts triggered only
Explanation The Cloud Load Balancer automatically routes traffic to healthy instances, ensuring high availability.
Q172

A company needs to connect on-premises data centers with Google Cloud securely. Which service should they use?

  • A Cloud VPN
  • B Cloud Pub/Sub
  • C Cloud Functions
  • D Cloud Storage
Explanation Cloud VPN provides secure connections, while the others do not serve this purpose.
Q173

What happens when you assign a public IP address to a VM instance?

  • A No external access allowed
  • B Instance becomes unreachable
  • C Instance receives a static IP
  • D Instance becomes accessible from the internet
Explanation Assigning a public IP allows internet accessibility, while the other options are incorrect.
Q174

You are configuring Cloud Armor for an application. What should you define to customize rules for incoming traffic?

  • A Backend services
  • B Security policies
  • C Firewall rules
  • D Load balancing settings
Explanation Security policies are used for customizing rules, while others are unrelated to Cloud Armor rule definitions.
Q175

Which service provides a private connection to Google Cloud services?

  • A Cloud VPN
  • B Interconnect
  • C Cloud Router
  • D VPC Peering
Explanation Interconnect establishes a direct, high-speed connection to Google services, while the others provide different connectivity options.
Q176

A company needs to enforce a consistent global access policy on all its virtual machine instances. What should they use?

  • A VPC firewall rules
  • B IAM roles
  • C Compute Engine Instance templates
  • D Organization Policies
Explanation Organization Policies allow enforcement of access controls across projects and services, unlike the other options which focus on local or role-based settings.
Q177

What happens when changing the subnet IP range in a running Cloud VPC?

  • A The instances will reboot
  • B Network traffic is disrupted
  • C Instances maintain existing IPs
  • D Connectivity is permanently lost
Explanation Instances retain their existing IPs and connectivity, but you can't shrink the subnet without deleting existing resources, unlike what the other options suggest.
Q178

Which service is primarily used for managing firewalls in Google Cloud?

  • A Cloud Armor
  • B VPC Service Controls
  • C Firewall Rules
  • D Cloud CDN
Explanation Firewall Rules directly manage network traffic policies, while others do not.
Q179

A company needs to connect its on-premises network to Google Cloud securely. What option should they use?

  • A Shared VPC
  • B Cloud VPN
  • C VPC Peering
  • D Cloud CDN
Explanation Cloud VPN establishes secure connections, while others connect resources differently.
Q180

What happens when multiple routes to the same destination exist with the same priority in Google Cloud?

  • A Traffic is randomly distributed
  • B Only the first route is used
  • C No route is used
  • D The routes are aggregated
Explanation Traffic is randomly distributed among routes of the same priority.