PROFESSIONAL-CLOUD-ARCHITECT · Question #297
PROFESSIONAL-CLOUD-ARCHITECT Question #297: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-ARCHITECT to reveal the answer and full explanation for question #297. The question stem and answer options stay visible for context.
Question
Your organization uses separate Google Cloud projects for shared services, development, testing, and production. - The shared services project hosts your private CI/CD runners and a central Artifact Registry - The development, testing, and production projects host the GKE clusters where applications are deployed. You need to design an architecture that allows the CI/CD runners to connect to the GKE clusters and the clusters to pull images from Artifact Registry, all using private IP addresses. However, direct network traffic between the development, testing, and production environments must be strictly prohibited. What should you do?
Options
- ACreate a separate VPC in each of the four projects. Connect each environment's VPC to the
- BExpose the resources in the shared services project using an external load balancer. Implement a
- CCreate a separate VPC in each project. Use VPC Network Peering to create a full mesh,
- DConfigure the shared services project as a Shared VPC host. Create a single VPC in this host
Unlock PROFESSIONAL-CLOUD-ARCHITECT to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-ARCHITECT questions. Unlock PROFESSIONAL-CLOUD-ARCHITECT for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.