Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 331–340 of 492

Q331

Which service allows automatic scaling of VMs in Google Cloud?

  • A Managed Instance Groups
  • B Cloud Functions
  • C Compute Engine
  • D Kubernetes Engine
Explanation Managed Instance Groups enable auto-scaling based on load, while others do not provide this specific functionality.
Q332

A company needs to ensure secure, limited access to Cloud Storage for sensitive data. What should they use?

  • A Cloud IAM roles
  • B VPC Service Controls
  • C Cloud Functions
  • D BigQuery Auth
Explanation VPC Service Controls provide additional security for Cloud Storage, ensuring limited access compared to IAM roles.
Q333

You are configuring a VPN between an on-premises network and Google Cloud. What must the VPN gateway have?

  • A A public IP address
  • B An internal IP address
  • C IPv6 support
  • D Load balancing
Explanation The VPN Gateway requires a public IP address to establish a connection with the on-premises network.
Q334

Which service offers private connectivity to Google Cloud?

  • A Cloud VPN
  • B Cloud Interconnect
  • C Cloud Storage
  • D Cloud Functions
Explanation Cloud Interconnect provides high-throughput and low-latency connectivity, unlike VPN which uses the public internet, and Cloud Storage or Functions are unrelated.
Q335

A company needs to ensure that their VPC resources are isolated. What should they implement first?

  • A Firewall rules
  • B Service accounts
  • C Subnets
  • D Cloud Load Balancer
Explanation Subnets enable the segmentation of VPC resources, while firewall rules control traffic, service accounts manage permissions, and load balancers distribute traffic.
Q336

You are configuring a Cloud Router for dynamic routing. What happens when you set the BGP session to down?

  • A Routes are advertised to peers
  • B No routes are advertised
  • C Static routes take effect
  • D New BGP session initiates
Explanation When the BGP session is down, no routes are advertised to peers, contradicting all other options that suggest continued advertising or speculative behavior.
Q337

Which service automatically scales your applications based on demand?

  • A Google Kubernetes Engine
  • B Google Compute Engine
  • C Google App Engine
  • D Google Cloud Functions
Explanation Google App Engine is designed for automatic scaling of applications; others require manual configuration.
Q338

A company needs to securely connect their on-premises network to Google Cloud. What should they use?

  • A Cloud Pub/Sub
  • B Cloud Interconnect
  • C Cloud Functions
  • D BigQuery Data Transfer Service
Explanation Cloud Interconnect provides a secure connection between on-premises and Google Cloud networks, unlike the other options.
Q339

What happens when you delete a Google Cloud IAM role while it's still assigned to a user?

  • A User retains all permissions granted
  • B Role deletion fails pending usage
  • C User loses permissions immediately
  • D Role becomes inactive but not deleted
Explanation Once a role is deleted, all permissions assigned via that role are immediately revoked from users.
Q340

Which service efficiently interconnects VPCs across regions?

  • A Google Cloud VPN
  • B Interconnect
  • C VPC Peering
  • D Cloud Router
Explanation VPC Peering enables interconnectivity of VPCs across regions, while others serve different purposes or connect with on-premises systems.