PROFESSIONAL-CLOUD-NETWORK-ENGINEER · Question #246
PROFESSIONAL-CLOUD-NETWORK-ENGINEER Question #246: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER to reveal the answer and full explanation for question #246. The question stem and answer options stay visible for context.
Question
You are troubleshooting an application in your organization's Google Cloud network that is not functioning as expected. You suspect that packets are getting lost somewhere. The application sends packets intermittently at a low volume from a Compute Engine VM to a destination on your on-premises network through a pair of Cloud Interconnect VLAN attachments. You validated that the Cloud Next Generation Firewall (Cloud NGFW) rules do not have any deny statements blocking egress traffic, and you do not have any explicit allow rules. Following Google- recommended practices, you need to analyze the flow to see if packets are being sent correctly out of the VM to isolate the issue. What should you do?
Options
- ACreate a packet mirroring policy that is configured with your VM as the source and destined to a
- BEnable VPC Flow Logs on the subnet that the VM is deployed in with SAMPLE_RATE = 1.0, and
- CVerify the network/attachment/egress_dropped_packets_count Cloud Interconnect VLAN
- DEnable Firewall Rules Logging on your firewall rules and review the logs.
Unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-NETWORK-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-NETWORK-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.