Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 351–360 of 492

Q351

What happens when a firewall rule is set to deny all traffic?

  • A All incoming and outgoing traffic is blocked
  • B Only incoming traffic is blocked
  • C Only outgoing traffic is blocked
  • D No traffic is affected
Explanation Deny all blocks both incoming and outgoing traffic; others misinterpret this rule's effects.
Q352

Which service enables private connectivity to Google services?

  • A Cloud Interconnect
  • B Cloud VPN
  • C Cloud Pub/Sub
  • D Cloud CDN
Explanation Cloud Interconnect allows private networking to Google services, whereas the others serve different purposes.
Q353

A company needs to securely connect its on-premises network to Google Cloud with minimal latency. Which service should they use?

  • A Cloud Run
  • B Cloud VPN
  • C Cloud Interconnect
  • D App Engine
Explanation Cloud Interconnect provides high-performance, low-latency connections, while Cloud VPN may not offer the same speed.
Q354

What happens when you use a custom role in IAM for a user?

  • A User gains default permissions
  • B User gets no permissions
  • C User receives specified permissions
  • D User can’t authenticate
Explanation A custom role assigns only the permissions you define, unlike the default or no permissions.
Q355

Which service is ideal for monitoring network traffic?

  • A Cloud Logging
  • B Cloud Monitoring
  • C VPC Flow Logs
  • D Cloud Audit Logs
Explanation VPC Flow Logs specifically monitor network traffic in GCP.
Q356

A company needs to connect its on-premises network to Google Cloud securely. What is the best option?

  • A Cloud VPN
  • B Cloud Router
  • C Dedicated Interconnect
  • D Cloud CDN
Explanation Cloud VPN provides a secure connection for on-premises networks.
Q357

You are configuring firewall rules for a GCP project. What happens if you mistakenly allow all ingress traffic?

  • A Only traffic from trusted IPs will be allowed.
  • B All network traffic will be blocked.
  • C All traffic can access your resources.
  • D Ingress traffic will be monitored only.
Explanation Allowing all ingress means unrestricted access to resources.
Q358

Which service is best for serverless functions?

  • A Google Cloud Functions
  • B Google Compute Engine
  • C Google Kubernetes Engine
  • D Google Cloud Storage
Explanation Google Cloud Functions is designed for serverless execution, while others are not.
Q359

A company needs to connect its on-premises network to Google Cloud. What should be used?

  • A VPN or Interconnect
  • B Cloud Pub/Sub
  • C Cloud Run
  • D BigQuery
Explanation VPN or Interconnect provides the needed connectivity option for hybrid setups.
Q360

You are configuring VPC peering between two projects. What is a requirement?

  • A Same region only
  • B Different organizations
  • C Non-overlapping IP ranges
  • D Default route only
Explanation Non-overlapping IP ranges are essential for proper routing in VPC peering.