PROFESSIONAL-CLOUD-NETWORK-ENGINEER · Question #129
PROFESSIONAL-CLOUD-NETWORK-ENGINEER Question #129: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER to reveal the answer and full explanation for question #129. The question stem and answer options stay visible for context.
Question
You are configuring an HA VPN connection between your Virtual Private Cloud (VPC) and on- premises network. The VPN gateway is named VPN_GATEWAY_1. You need to restrict VPN tunnels created in the project to only connect to your on-premises VPN public IP address: 203.0.113.1/32. What should you do?
Options
- AConfigure a firewall rule accepting 203.0.113.1/32, and set a target tag equal to
- BConfigure the Resource Manager constraint constraints/compute.restrictVpnPeerIPs to use an
- CConfigure a Google Cloud Armor security policy, and create a policy rule to allow 203.0.113.1/32.
- DConfigure an access control list on the peer VPN gateway to deny all traffic except
Unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-NETWORK-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.