Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 281–290 of 492

Q281

A company needs to ensure that its VMs can only receive traffic from a specific IP range. What should they configure?

  • A Firewall rules
  • B VPC peering
  • C Load balancer
  • D Subnet mask
Explanation Firewall rules can restrict incoming traffic; the other options do not limit traffic scope properly.
Q282

What happens when you delete a Cloud Storage bucket that contains objects?

  • A All objects remain intact.
  • B Objects are deleted immediately.
  • C Objects are archived temporarily.
  • D Objects are replicated elsewhere.
Explanation Deleting a bucket results in immediate deletion of all contained objects; others are not true actions for deletion.
Q283

What is the primary purpose of Google Cloud VPC?

  • A Isolate services using subnets
  • B Enable high-speed data transfer
  • C Manage static IP addresses
  • D Create publicly accessible apps
Explanation Google Cloud VPC is designed to isolate services using subnets; the other options do not represent its primary function.
Q284

A company needs to connect its on-premises network to a Google Cloud project. Which solution should they choose?

  • A Use Cloud Function
  • B Use VPN Gateway
  • C Use Google Cloud CDN
  • D Use App Engine
Explanation A VPN Gateway securely connects on-premises networks to Google Cloud; the other options do not provide this capability.
Q285

What happens when you create a firewall rule with an 'allow' action but no specified source IP ranges?

  • A Access is denied to all traffic
  • B Access is allowed from any IP
  • C Only internal traffic is allowed
  • D It results in a configuration error
Explanation When no source IP ranges are specified, it defaults to allow traffic from any IP; the other options do not reflect this behavior.
Q286

Which service is typically used for hybrid cloud interconnectivity?

  • A Cloud VPN
  • B Cloud CDN
  • C Cloud Pub/Sub
  • D Cloud Functions
Explanation Cloud VPN enables secure connectivity; others do not provide interconnectivity.
Q287

A company needs to securely manage API keys. Which Google Cloud service is best suited for this purpose?

  • A Cloud Storage
  • B Secret Manager
  • C Cloud Logging
  • D Cloud Endpoints
Explanation Secret Manager stores and manages sensitive data like API keys; others serve different purposes.
Q288

What happens when increasing the MTU size on a Google Cloud VPC?

  • A Reduces network latency
  • B Increases packet fragmentation
  • C Enhances security features
  • D Boosts throughput of large packets
Explanation Larger MTU allows more data per packet, increasing throughput; other options are incorrect or misleading.
Q289

Which service facilitates private communication between Google Cloud and on-premises networks?

  • A Cloud VPN
  • B Cloud Storage
  • C Cloud Functions
  • D Cloud Pub/Sub
Explanation Cloud VPN connects on-prem to Google Cloud securely; others do not provide network connectivity.
Q290

A company needs to set up firewall rules to prevent unwanted traffic. Which rules should they configure?

  • A Ingress and egress rules
  • B Only ingress rules
  • C Static routes only
  • D Only egress rules
Explanation Both ingress and egress rules control traffic effectively; selecting only one misses key coverage.