1. Home
  2. Discussions
  3. Google
  4. Google Cloud Certified
  5. Professional-Cloud-Security-Engineer Discussions
  6. Professional-Cloud-Security-Engineer Exam Topic 1 Question 1 Discussion

Google Cloud Certified - Professional Cloud Security Engineer Professional-Cloud-Security-Engineer Question # 1 Topic 1 Discussion

 Google Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
Next  

Google Cloud Certified - Professional Cloud Security Engineer Professional-Cloud-Security-Engineer Question # 1 Topic 1 Discussion

Professional-Cloud-Security-Engineer Exam Topic 1 Question 1 Discussion:
Question #: 1
Topic #: 1

You control network traffic for a folder in your Google Cloud environment. Your folder includes multiple projects and Virtual Private Cloud (VPC) networks You want to enforce on the folder level that egress connections are limited only to IP range 10.58.5.0/24 and only from the VPC network dev-vpc." You want to minimize implementation and maintenance effort

What should you do?
A.

• 1. Attach external IP addresses to the VMs in scope.

• 2. Configure a VPC Firewall rule in "dev-vpc" that allows egress connectivity to IP range 10.58.5.0/24 for all source addresses in this network.

B.

• 1. Attach external IP addresses to the VMs in scope.

• 2. Define and apply a hierarchical firewall policy on folder level to deny all egress connections and to allow egress to IP range 10 58.5.0/24 from network dev-vpc.

C.

• 1. Leave the network configuration of the VMs in scope unchanged.

• 2. Create a new project including a new VPC network "new-vpc."

• 3 Deploy a network appliance in "new-vpc" to filter access requests and only allow egress connections from -dev-vpc" to 10.58.5.0/24.

D.

• 1 Leave the network configuration of the VMs in scope unchanged

• 2 Enable Cloud NAT for dev-vpc" and restrict the target range in Cloud NAT to 10.58.5 0/24.

Get Premium Professional-Cloud-Security-Engineer Questions
Actual exam question for Google Professional-Cloud-Security-Engineer exam by Phoenix8858 at Aug 4, 2025, 12:17:46 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
Next