ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Network Engineer All Questions

View all questions & answers for the Professional Cloud Network Engineer exam
Go to Exam

Exam Professional Cloud Network Engineer topic 1 question 220 discussion

Actual exam question from Google's Professional Cloud Network Engineer
Question #: 220
Topic #: 1
[All Professional Cloud Network Engineer Questions]

You are creating a design that will connect your single on-premises data center to a VPC in Google Cloud by using an IPsec VPN connection. The connection must have a minimum SLA of 99.99%. There is a single VPN termination device located in your on-premises data center. The VPN termination device can be configured only with a single public IP address. Your design must also have the least amount of setup effort. What should you do?

  • A. 1. Create two HA VPN gateways.
    2. Create one tunnel on interface 0 of one gateway and create one tunnel on interface 1 of the other gateway.
    3. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device located in your on-premises data center.
  • B. 1. Create one Classic VPN gateway and one HA VPN gateway.
    2. Create one tunnel on the interface of the Classic VPN gateway and one tunnel on interface 1 of the HA VPN gateway.
    3. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device located in your on-premises data center.
  • C. 1. Replace the existing on-premises VPN termination device with a new device that is configured with two different public IP addresses.
    2. Create one HA VPN gateway.
    3. Create one tunnel for each of the two HA VPN gateway interfaces.
    4. Terminate each of the two tunnels on one of the two public IP addresses that is configured on the new VPN termination device located in your on-premises data center.
  • D. 1. Create one HA VPN gateway.
    2. Create one tunnel for each of the two HA VPN gateway interfaces.
    3. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device located in your on-premises data center.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by RKS_2021 at Feb. 24, 2025, 5:24 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
n2183712847
1 month, 2 weeks ago
Selected Answer: D
Option D is the only one that correctly identifies the necessary HA VPN gateway and describes the specific configuration needed to terminate both tunnels on a single on-premises public IP address, which is a supported method for achieving 99.99% SLA under the given constraints.
upvoted 1 times
...
1f01b87
3 months ago
Selected Answer: D
D is correct.
upvoted 1 times
...
RKS_2021
3 months, 3 weeks ago
Selected Answer: D
https://cloud.google.com/network-connectivity/docs/vpn/concepts/topologies#:~:text=To%20meet%20the%2099.9%25%20availability,of%20the%20Compute%20Engine%20VM. Caution: To receive the 99.99% availability SLA, configure at least one tunnel on each HA VPN gateway interface. Configuring only one tunnel from a single HA VPN interface to a single interface on the peer gateway doesn't provide enough redundancy to meet the availability SLA because there is an unused interface on the HA VPN gateway, which does not have a tunnel configured on it.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel