Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 421–430 of 492

Q421

Which service allows for cross-region VPC peering in GCP?

  • A Cloud Router
  • B VPC Network Peering
  • C Cloud VPN
  • D Interconnect
Explanation VPC Network Peering supports cross-region peering, while others do not serve that purpose.
Q422

A company needs to ensure their GCP project complies with security best practices while allowing necessary access for developers. Which service should they implement?

  • A Cloud Firewall
  • B IAM Roles
  • C Pub/Sub
  • D Cloud Armor
Explanation IAM Roles provide the required access control effectively, while the others focus on security without fine-grained permissions.
Q423

What happens when you assign multiple IAM roles to a GCP user on the same resource?

  • A Roles are merged together
  • B Only the first role is used
  • C No effect; ignores extra roles
  • D Access is denied
Explanation Roles are combined, granting all permissions effectively, while the others misrepresent IAM behavior.
Q424

Which service provides a global, resilient network infrastructure?

  • A Google Cloud Load Balancing
  • B Google Cloud VPN
  • C Google Cloud CDN
  • D Google Cloud Functions
Explanation Google Cloud Load Balancing distributes traffic globally; the others serve different functions.
Q425

A company needs to connect its on-premises data center to Google Cloud securely. What should they use?

  • A Cloud VPN
  • B Cloud Storage
  • C Cloud Pub/Sub
  • D Cloud Spanner
Explanation Cloud VPN creates a secure connection, while the others don't connect on-premises data centers.
Q426

You are configuring a VPC with custom subnet settings; what happens when you try to add a subnet with overlapping IP ranges?

  • A Configuration succeeds without issues
  • B Configuration fails and returns an error
  • C The subnet is created, but unusable
  • D IP ranges are automatically adjusted
Explanation Overlapping IP ranges in subnets cause configuration errors; others are incorrect behaviors.
Q427

Which service is used for hybrid cloud connectivity?

  • A Cloud VPN
  • B Cloud Spanner
  • C Cloud Functions
  • D Cloud Storage
Explanation Cloud VPN provides secure connectivity between on-premises and Google Cloud.
Q428

A company needs to securely manage API keys. Which service should they use?

  • A Secret Manager
  • B Firewalls
  • C Cloud Scheduler
  • D Cloud Pub/Sub
Explanation Secret Manager offers secure storage for API keys and sensitive information.
Q429

What happens when a VM’s service account lacks permission to access a resource?

  • A Access is denied immediately
  • B Request retries until timeout
  • C Temporary access is granted
  • D Access is granted with warnings
Explanation Lack of permission means access is immediately denied.
Q430

Which service manages auto-scaling for containerized applications?

  • A Google Kubernetes Engine
  • B Compute Engine
  • C App Engine
  • D Cloud Functions
Explanation Google Kubernetes Engine automates scaling for containers; the others do not manage container orchestration at this level.