Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 201–210 of 492

Q201

You are configuring a VPC firewall rule with the priority set to 1000. What happens if another rule has a priority of 800?

  • A 1000 rule takes precedence
  • B 800 rule takes precedence
  • C Both rules are ignored
  • D No impact on network traffic
Explanation Lower priority numbers are processed first; hence 800 takes precedence over 1000.
Q202

Which service is best for managing API traffic?

  • A Cloud Identity
  • B Cloud Pub/Sub
  • C API Gateway
  • D Cloud Storage
Explanation API Gateway is designed to manage API traffic; others serve different purposes.
Q203

A company needs to ensure that traffic between its on-premises network and Google Cloud is secure. What is the best solution?

  • A Public Internet Access
  • B Cloud VPN
  • C Cloud Load Balancing
  • D Cloud Functions
Explanation Cloud VPN provides a secure connection; others do not ensure security.
Q204

What happens when a subnet is deleted in Google Cloud?

  • A All associated resources are deleted
  • B IP addresses are automatically refunded
  • C Routing configurations remain intact
  • D Firewall rules are deleted
Explanation Deleting a subnet deletes associated resources; other options misinterpret deletion outcomes.
Q205

Which service is primarily used for load balancing in Google Cloud?

  • A Cloud Load Balancing
  • B Cloud Pub/Sub
  • C Cloud CDN
  • D Compute Engine
Explanation Cloud Load Balancing distributes traffic across resources, while others serve different purposes.
Q206

A company needs to restrict access to its Cloud Storage buckets based on user roles. What should be implemented?

  • A IAM Policies
  • B Firewall Rules
  • C VPC Peering
  • D Service Accounts
Explanation IAM Policies appropriately control access based on permissions, while others don't directly manage that access.
Q207

You are configuring a VPC with multiple subnets. What happens if a subnet's IP range overlaps with another subnet in the same VPC?

  • A Both subnets will remain functional
  • B Network conflicts will occur
  • C Only one subnet will work
  • D Subnets will merge into one
Explanation Overlapping IP ranges lead to network conflicts and routing issues.
Q208

Which service provides a managed Kubernetes environment?

  • A Google Kubernetes Engine (GKE)
  • B Cloud Run
  • C Cloud Functions
  • D Compute Engine
Explanation GKE is specifically designed for managing Kubernetes, while others serve different purposes.
Q209

A company needs to ensure its Cloud Fabric is scalable. What should they configure?

  • A Instance Groups
  • B Cloud Pub/Sub
  • C Cloud Storage Lifecycle
  • D BigQuery DML Operations
Explanation Instance Groups enable scalability and load balancing in cloud environments, whereas the others do not directly address scaling infrastructure.
Q210

What happens when you configure a firewall rule allowing all traffic?

  • A Blocks all incoming traffic
  • B Allows all traffic through
  • C Implicitly denies all traffic
  • D Allows traffic only from authorized users
Explanation Allowing all traffic means no restrictions on ingress or egress, while others imply limited access or blocks.