Exam Professional Cloud Network Engineer topic 1 question 196 discussion

Actual exam question from Google's Professional Cloud Network Engineer

Question #: 196
Topic #: 1

[All Professional Cloud Network Engineer Questions]

You have recently taken over responsibility for your organization's Google Cloud network security configurations. You want to review your Cloud Next Generation Firewall (Cloud NGFW) configurations and ensure there are no rules that are allowing ingress traffic to your VMs and services from the internet. You want to avoid manual work. What should you do?

A. Review the firewall policy rules associated with the VPC, and filter for rules that allow ingress from 0.0.0.0/0.
B. Enable "Overly permissive rules insights" in Firewall Insights. Review results for rules that show allowed ingress traffic from internet sources.
C. Run Connectivity Tests from multiple external sources to double-check ingress traffic settings.
D. Enable the Network Analyzer API and review the "VPC Network" category insights.

Show Suggested Answer

Suggested Answer: B 🗳️

by b0b25 at Feb. 22, 2025, 2:28 a.m.

Comments

Submit Cancel

1f01b87

1 month, 2 weeks ago

Selected Answer: B

https://cloud.google.com/network-intelligence-center/docs/firewall-insights/concepts/insights-categories-states#overly-permissive-rules

upvoted 1 times

...

1f01b87

1 month, 2 weeks ago

Selected Answer: B

B is correct

upvoted 1 times

...

Exam Professional Cloud Network Engineer All Questions

View all questions & answers for the Professional Cloud Network Engineer exam

Exam Professional Cloud Network Engineer topic 1 question 196 discussion

Comments

1f01b87

1f01b87

SY0-701