Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 411–420 of 492

Q411

You are configuring a VPN connection. What happens if the on-premises VPN gateway uses a different pre-shared key?

  • A Connection will succeed with warning
  • B Connection will drop immediately
  • C Connection will fail to establish
  • D Connection will be intermittent
Explanation A mismatch in pre-shared keys prevents VPN establishment; others incorrectly suggest varying outcomes.
Q412

Which service provides interconnect between on-premises networks and Google Cloud?

  • A Cloud VPN
  • B Cloud CDN
  • C Cloud Functions
  • D Cloud Pub/Sub
Explanation Cloud VPN facilitates secure connections to Google Cloud, while the others do not serve this purpose.
Q413

A company needs to create a reliable, low-latency connection to its multi-region workloads. Which service should they use?

  • A Cloud Roaming
  • B Cloud Load Balancing
  • C Cloud Firestore
  • D Cloud Spanner
Explanation Cloud Load Balancing optimizes connection reliability and latency, while the others focus on different functionalities.
Q414

What happens when a Compute Engine instance exceeds its quota limits?

  • A Instance gets terminated automatically
  • B No new instances can be created
  • C Instance slows down significantly
  • D Alert sent to Cloud IAM
Explanation Quotas restrict resource consumption and stop instance creation, while the others describe incorrect behaviors.
Q415

Which service allows you to isolate workloads within a VPC?

  • A VPC Peering
  • B Subnets
  • C Cloud VPN
  • D Cloud Interconnect
Explanation Subnets are used to segment a VPC's IP address space for isolation, while the others are connectivity options.
Q416

A company needs to enable secure communication between its on-premises network and Google Cloud. Which method is the best?

  • A Direct Access
  • B Cloud Storage
  • C Cloud Armor
  • D Cloud VPN
Explanation Cloud VPN establishes secure connections between networks, while the others do not provide secure connectivity.
Q417

What happens when you configure a firewall rule to only allow egress traffic?

  • A Ingress traffic is allowed
  • B No traffic is allowed
  • C Egress traffic is blocked
  • D Only outbound traffic is allowed
Explanation A rule allowing egress traffic permits outbound communication while restricting incoming traffic.
Q418

Which service provides a global virtual network for Google Cloud resources?

  • A VPC
  • B Cloud Functions
  • C Cloud Storage
  • D BigQuery
Explanation VPC stands for Virtual Private Cloud, providing network isolation, while the others serve different, unrelated functions.
Q419

A company needs to ensure that only specific instances can access its private Cloud SQL database. What feature would you use?

  • A IAM Roles
  • B Service Accounts
  • C Authorized Networks
  • D Interconnect
Explanation Authorized Networks allow specific IP ranges access to Cloud SQL; the other options do not directly limit database access.
Q420

What happens when you configure a firewall rule allowing all egress traffic?

  • A Blocks all incoming connections
  • B Allows outbound traffic from instances
  • C Restricts access to specific instances
  • D Increases network latency
Explanation Allowing all egress traffic permits outbound communication, while the others misinterpret the effects of the rule.