Google Cloud

Google Cloud Certified – Professional Cloud Network Engineer

PR000240

Become a certified Professional Cloud Network Engineer with exam code PR000240 to validate your networking skills in Google Cloud.

492 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 461–470 of 492

Q461

A company needs to create a private network that covers multiple geographical locations. Which Google Cloud feature should they use?

  • A Cloud CDN
  • B Global VPC
  • C VPC Metro
  • D Dedicated Interconnect
Explanation Global VPC allows a private network across regions; other options do not provide this capability.
Q462

What happens when you set a firewall rule with 'Allow' but specify no source ranges?

  • A All traffic is allowed.
  • B Only internal traffic is allowed.
  • C All traffic is denied.
  • D No traffic matches the rule.
Explanation Specifying no source ranges means all traffic is considered valid; others misinterpret firewall behavior.
Q463

Which service enables hybrid cloud connectivity in GCP?

  • A Cloud VPN
  • B Cloud CDN
  • C Cloud Functions
  • D Cloud Spanner
Explanation Cloud VPN connects on-premises to GCP, while others serve different functions.
Q464

A company needs to analyze network traffic flows on Google Cloud. Which service should they use?

  • A VPC Flow Logs
  • B Cloud Storage
  • C Cloud Pub/Sub
  • D Cloud Firestore
Explanation VPC Flow Logs provide logs for network traffic analysis, unlike the other services listed.
Q465

What happens when a GCP firewall rule is set to deny traffic but lacks a priority number?

  • A It is ignored.
  • B Traffic passes.
  • C Traffic gets blocked.
  • D Default priority is applied.
Explanation Without a specified priority, the default priority is applied; it doesn't mean the rule is ignored.
Q466

Which service allows users to automate network configurations?

  • A Cloud Deployment Manager
  • B Cloud Router
  • C Cloud Functions
  • D Cloud DNS
Explanation Cloud Deployment Manager is specifically meant for automation; others are for routing, functions, or DNS.
Q467

A company needs highly available internet connectivity for their services. What should they implement?

  • A Single Cloud VPN
  • B Multiple External IPs
  • C Cloud Interconnect
  • D Cloud NAT
Explanation Cloud Interconnect provides highly available connectivity; the others do not ensure redundancy.
Q468

You are configuring firewall rules in GCP. What happens when rules are set to deny all traffic?

  • A No instances can communicate
  • B Only external traffic is denied
  • C Logs are generated for all traffic
  • D Internal traffic is permitted
Explanation Denying all traffic prevents communication entirely; others misinterpret the scope of the deny rule.
Q469

Which service can be used to streamline VPC peering in Google Cloud?

  • A Cloud Router
  • B Cloud Pub/Sub
  • C Cloud Functions
  • D Load Balancing
Explanation Cloud Router supports dynamic routing, enabling efficient VPC peering, while the others serve different purposes.
Q470

A company needs to connect its on-premises data center to Google Cloud without traversing the public internet. Which option should they choose?

  • A VPN tunnel
  • B Interconnect
  • C Cloud Functions
  • D Transcoder API
Explanation Cloud Interconnect provides a direct private connection, while VPN remains over the internet.