PROFESSIONAL-CLOUD-NETWORK-ENGINEER · Question #202
PROFESSIONAL-CLOUD-NETWORK-ENGINEER Question #202: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER to reveal the answer and full explanation for question #202. The question stem and answer options stay visible for context.
Question
Your company uses Compute Engine instances that are exposed to the public internet. Each compute instance has a single network interface with a single public IP address. You need to block any connection attempt that originates from internet clients with IP addresses that belong to the BGP ASN. What should you do? BGP_ASN_TOBLOCK
Options
- ACreate a new Cloud Armor backend security policy, and use the --network-src-asns parameter.
- BCreate a new Cloud Armor network edge security policy, and use the --network-src-asns
- CCreate a new Cloud Armor edge security policy, and use the --network-src-asns parameter.
- DCreate a new firewall policy ingress rule, and use the --network-src-asns parameter.
Unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-NETWORK-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.