Exam Professional Cloud Architect topic 1 question 1 discussion

D is the answer because HTTP(S) load balancer can direct traffic reaching a single IP to different backends based on the incoming URL. A is not correct because configuring a new load balancer would require a new or different SSL and DNS records which conflicts with the requirements to keep the same SSL and DNS records. B is not correct because it goes against the requirements. The company wants to keep the old API available while new customers and testers try the new API. C is not correct because it is not a requirement to decommission the implementation behind the old API. Moreover, it introduces unnecessary risk in case bugs or incompatibilities are discovered in the new API.

agreed, The answer is D

I need to perform the Google Architect Renew. There's a Google release of one Architect certification called "Professional Cloud Architect Renewal." I would like to know if the Google Architect certification available on this site covers these renewal questions. Thanks in advance. https://services.google.com/fh/files/misc/pca_renewal_exam_overview_and_faqs.pdf CQ

D is correct

Answer is D. Using a HTTPS load balancer for different backend makes sense as we dont want to disturb the old API setup and also want to test new API

Can anybody tell if these here question are still in the current exam?

D is right!

D is good for keep the same records.

Using separate backend pools for each API version behind a single load balancer fulfills all requirements: Single SSL and DNS Endpoint: Both API versions share the same SSL certificate and DNS records, so users and developers don’t need to reconfigure their endpoints. The load balancer handles routing transparently. Separation of APIs: Different backend pools allow for clear segregation between the old and new API versions. Each API can be deployed, updated, and scaled independently. Traffic Management: The load balancer can route traffic based on request paths (e.g., /v1 for the old API and /v2 for the new API). This allows smooth coexistence of the APIs while developers gradually adopt the new version.

You have to split the traffic

Answer: D. Use separate backend pools for each API path behind the load balancer This is the correct option because: It maintains a single entry point with existing SSL/DNS Allows path-based routing to direct traffic appropriately Requires no client reconfiguration Provides clean separation between versions Follows common API versioning patterns

The best answer here is D. Use separate backend pools for each API path behind the load balancer. Here's why: * Maintaining the same DNS and SSL records: This requirement implies that both API versions need to be accessible through the same domain and endpoint. * Separate backend pools: By using separate backend pools for each API version, the load balancer can direct traffic to the appropriate servers based on the request path. This allows for seamless co-existence of both versions without any conflict. * Flexibility and Control: This approach provides flexibility in managing traffic, allowing you to gradually shift users to the new API or run A/B testing.

You have a Compute Engine managed instance group that adds and removes Compute Engine instances from the group in response to the load on your application.The instances have a shutdown script that removes REDIS database entries associated with the instance.You see that many database entries have not been removed, and you suspect that the shutdown script is the problem.You need to ensure that the commands in the shutdown script are run reliably every time an instance is shut down. You create a Cloud Function to remove the database entries.What should you do next? A. Modify the shutdown script to wait for 30 seconds and then publish a message to a Pub/Sub queue. B. Modify the shutdown script to wait for 30 seconds before triggering the Cloud Function. C. Set up a Cloud Monitoring sink that triggers the Cloud Function after an instance removal log message arrives in Cloud logging D. Do not use the Cloud Function. Modify the shutdown script to restart if it has not completed in 30 seconds. what is your answer?

Your company and one of its partners each have a Google cloud project in separate organizations.Your complny's project(prj-a) runs in virtual Private Cloud (vpc-a). The partner's project (prj-b) runs in vpc-b. There are two instances running on vpc-a and one instance running on vpc-b Subnets defined in both VPCs are not overlapping.You need to ensure that all instances communicate with each other via internal IPs minimizing latency and maximizing throughput.What should you do A.Set up a network peering between vpc-a and vpc-b B.Set up a VPN between vpc-a and vpc-b using cloud VPN C.Configure IAP TCP forwarding on the instance in vpc-b, and then launch the following gcloud command from one of the instances vpc-a gcloud: gcloud compute start-iap-tunnel INSTANCE_NAME_VPC_ --local-host-port=localhost:22 D. 1.Create an additional instance in vpc-a. 2.Create an additional instance in vpc-b. 3.Install OpenVPN in newly created instances 4.Configure a VPN tunnel between vpc-a and vpc-b and b with the help of OpenVPN. what is your answer?

Your company has an application running on App engine that allows users to upload music files and share therm with other people .You want to allow users to upload files directly into Cloud storage from their browser session.The payload should not be passed through the backend. What should you do? A. Set a CORS configuration in the target Cloud storage bucket where the base URL of the App Engine application is an allowed origin.Use the Cloud Storage signed URL feature to generate a POST URL. B. Set a CORS configuration in the target cloud storage bucket where the base URL of the App Engine application is an allowed origin. Assign the Cloud Storage WRITER role to users who upload files. C. Use the Cloud Storage Signed URL feature to generate a POST URL.Use App Engine default credentials to sign requests against Cloud Storage. D. Assign the Cloud Storage WRITER role to users who upload files; use App Engine default credentials to sign requests against Cloud Storage. what is your answer？

You are deploying an application to Google Cloud. The of a system.The application in Google Cloud must communicate to private network with applications in a non-Google cloud environment The expected average throughput is 200 kbps.The business require ·as close to 100% system availability as possible ·cost optimization You need to design the connectivity between the business requirements. What should you provision? A. An HA Cloud VPN gateway connected with two tunnels to an on-premises VPN gateway. B. A single Cloud VPN gateway connected to an on-premises VPN gateway. C.Two Classic Cloud VPN gateways connected to two on-premises VPN gateways. Configure each classic cloud VPN gateway to have two tunnels,each connected to different on-premises VPN gateways. D. Two HA Cloud VPN gateways connected to two on-premises VPN gateways. Configure each HA Cloud VPN gateway to have two tunnels,each connected to different on-premises VPN gateways. what is your answer?

D because This approach allows you to keep the same SSL and DNS records while directing traffic based on the API path. The load balancer can be configured to route requests to different backend pools depending on whether the request is for the old or new API version. This ensures that both versions are accessible under the same domain, providing a seamless transition for both old and new users.