1. Home
  2. Discussions
  3. Google
  4. Google Cloud Platform
  5. Professional-Cloud-Network-Engineer Discussions
  6. Professional-Cloud-Network-Engineer Exam Topic 5 Question 48 Discussion

Google Cloud Certified - Professional Cloud Network Engineer Professional-Cloud-Network-Engineer Question # 48 Topic 5 Discussion

 Google Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Google Cloud Certified - Professional Cloud Network Engineer Professional-Cloud-Network-Engineer Question # 48 Topic 5 Discussion

Professional-Cloud-Network-Engineer Exam Topic 5 Question 48 Discussion:
Question #: 48
Topic #: 5

Question:

You need to enable Private Google Access for some subnets within your Virtual Private Cloud (VPC). Your security team set up the VPC to send all internet-bound traffic back to the on-premises data center for inspection before egressing to the internet, and is also implementing VPC Service Controls for API-level security control. You have already enabled the subnets for Private Google Access. What configuration changes should you make to enable Private Google Access while adhering to your security team's requirements?
A.

Create a private DNS zone with a CNAME record for *.googleapis.com to private.googleapis.com, with an A record pointing to Google’s private API address range.

Change the custom route that points the default route (0/0) to the default internet gateway as the next hop.

B.

Create a private DNS zone with a CNAME record for *.googleapis.com to private.googleapis.com, with an A record pointing to Google’s private API address range.

Create a custom route that points Google’s private API address range to the default internet gateway as the next hop.

C.

Create a private DNS zone with a CNAME record for *.googleapis.com to restricted.googleapis.com, with an A record pointing to Google’s restricted API address range.

Create a custom route that points Google’s restricted API address range to the default internet gateway as the next hop.

D.

Create a private DNS zone with a CNAME record for *.googleapis.com to restricted.googleapis.com, with an A record pointing to Google’s restricted API address range.

Change the custom route that points the default route (0/0) to the default internet gateway as the next hop.

Get Premium Professional-Cloud-Network-Engineer Questions
Actual exam question for Google Professional-Cloud-Network-Engineer exam by Zara63196 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next