Practice Test 1 | Google Cloud Certified Professional Cloud Network Engineer | Dumps | Mock Test
You work as a network engineer in a footwear company. The company has deployed resources in three VPCs and has an IDS/IPS instance deployed in the fourth VPC that inspects traffic ingress and egress to all the VPCs. The IDS/IPS instance has multiple-NICs, with one NIC per VPC. You need to investigate firewall misconfigurations.
Which of the following is TRUE about the firewall rules and the network interface of the IDS/IPS instance?
A. The firewall rules in each of the other three VPCs apply to the interfaces in their respective VPC
B. The firewall rules in each of the other three VPCs apply to all the interfaces of the IDS/IPS instance
C. The firewall rules in the fourth VPC apply only to the interface of the IDS/IPS instance in that VPC
D. The firewall rules in the fourth VPC apply to only the interfaces of the IDS/IPS instance in the other three VPCs
E. The firewall rules in the fourth VPC applies to all the interfaces of the IDS/IPS instance
Correct Answers: A and C
- Option A is correct. According to Google’s documentation, if an instance’s interface is in a particular VPC network, that network’s firewall rules apply to that interface.
- Option B is incorrect because it is not aligned to how firewall rules work. The firewall rule in a VPC cannot affect the NIC in another VPC.
- Option C is correct. According to Google’s documentation, if an instance’s interface is in a particular VPC network, that network’s firewall rules apply to that interface
- Option D is incorrect because it is not aligned with how firewall rules work. The firewall rule in a VPC cannot affect the NIC in another VPC.
- Option E is incorrect because it is not aligned with how firewall rules work. The firewall rule in a VPC cannot affect the NIC in another VPC.
Reference:
Comments are closed, but trackbacks and pingbacks are open.