Practice Test 2 | Google Cloud Certified Professional Cloud Security Engineer | Dumps | Mock Test

Question 14

Your company has an application running on Compute Engine behind an HTTP(S) Load balancer. You are tasked with configuring the Cloud Armor policies. You add two rules to a policy to deny traffic from a CIDR Range with Priority 1000 and allow traffic from the CIDR range with Priority 2000.

Which of the following is the expected outcome?

A. Traffic from the CIDR range is allowed.
B. Traffic from the CIDR range is denied.
C. Nothing happens due to the conflict of rules.
D. Some traffic is allowed, and some is denied from the CIDR range.

Answer

Answer: B

Option A is incorrect. The deny rule has a higher priority of 1000, so it is executed first.
Option B is CORRECT. The deny rule has a higher priority of 1000, so it is executed first.
Option C is incorrect. Traffic is either allowed or denied based on the applied rules.
Option D is incorrect. Traffic is either allowed or denied based on the applied rules.

References:

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55

PCSE

Practice Test 2 | Google Cloud Certified Professional Cloud Security Engineer | Dumps | Mock Test

Question 14

Answer

Ads Blocker Detected!!!