Practice Test 3 | Google Cloud Certified Professional Cloud Network Engineer | Dumps | Mock Test
You have been asked to restrict the communications between the GKE Cluster and specified networks (on-premises network) such that only specified networks are allowed to communicate with your GKE cluster.
Which of the following can be used to achieve this? Choose two.
A. Network Policy.
B. Ingress.
C. master authorised networks.
D. firewall rules.
Answer: C and D
Option A is incorrect, this is how to restrict pod communications in GKE
Option B is incorrect, ingress is used to expose services externally via a HTTPS Load balancing.
Option C is correct, Enable master authorized networks is used to allow GCP or non-GCP source IPs to access the Kubernetes master.
Options D is correct, firewall rules are used to allow or deny traffic.
https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters explains how to create a private GKE cluster.
Comments are closed, but trackbacks and pingbacks are open.