DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

Online Professional Cloud Network Engineer Mock Tests & Study Materials, Google Professional Cloud Network Engineer | SPOTO

Prepare to excel in the Professional Cloud Network Engineer certification exam with our comprehensive mock tests and study materials. As a Professional Cloud Network Engineer, it's crucial to have a deep understanding of network architectures in Google Cloud. Our mock tests cover essential topics such as network services, application and container networking, hybrid and multi-cloud connectivity, VPC implementation, and security measures. With detailed explanations and answers provided, you'll gain the knowledge needed to succeed in implementing and managing network architectures effectively. Utilize our exam simulator to simulate real exam conditions and assess your readiness. Trust SPOTO for high-quality mock tests and study materials to dominate the Professional Cloud Network Engineer certification exam and advance your career in cloud networking.
Take other online exams
Question #1
You are disabling DNSSEC for one of your Cloud DNS-managed zones. You removed the DS records from your zone file, waited for them to expire from the cache, and disabled DNSSEC for the zone. You receive reports that DNSSEC validating resolves are unable to resolve names in your zone. What should you do?
A. Update the TTL for the zone
B. Set the zone to the TRANSFER state
C. Disable DNSSEC at your domain registar
D. Transfer ownership of the domain to a new registar
View answer
Correct Answer: C
Question #2
You are designing a shared VPC architecture. Your network and security team has strict controls over which routes are exposed between departments. Your Production and Staging departments can communicate with each other, but only via specific networks. You want to follow Google-recommended practices. How should you design this topology?
A. Create 2 shared VPCs within the shared VPC Host Project, and enable VPC peering between them
B. Create 2 shared VPCs within the shared VPC Host Project, and create a Cloud VPN/Cloud Router between them
C. Create 2 shared VPCs within the shared VPC Service Project, and create a Cloud VPN/Cloud Router between them
D. Create 1 VPC within the shared VPC Host Project, and share individual subnets with the Service Projects to filter access between the specific networks
View answer
Correct Answer: D
Question #3
You want to configure load balancing for an internet-facing, standard voice-over-IP (VOIP) application. Which type of load balancer should you use?
A. HTTP(S) load balancer
B. Network load balancer
C. Internal TCP/UDP load balancer
D. TCP/SSL proxy load balancer
View answer
Correct Answer: C
Question #4
You create multiple Compute Engine virtual machine instances to be used at TFTP servers. Which type of load balancer should you use?
A. HTTP(S) load balancer
B. SSL proxy load balancer
C. TCP proxy load balancer
D. Network load balancer
View answer
Correct Answer: B
Question #5
You have a storage bucket that contains the following objects: - folder-a/image-a-1.jpg - folder-a/image-a-2.jpg - folder-b/image-b-1.jpg - folder-b/image-b-2.jpg Cloud CDN is enabled on the storage bucket, and all four objects have been successfully cached. You want to remove the cached copies of all the objects with the prefix folder-a, using the minimum number of commands. What should you do?
A. Add an appropriate lifecycle rule on the storage bucket
B. Issue a cache invalidation command with pattern /folder-a/*
C. Make sure that all the objects with prefix folder-a are not shared publicly
D. Disable Cloud CDN on the storage bucket
View answer
Correct Answer: C
Question #6
Your company has recently expanded their EMEA-based operations into APAC. Globally distributed users report that their SMTP and IMAP services are slow. Your company requires end-to-end encryption, but you do not have access to the SSL certificates. Which Google Cloud load balancer should you use?
A. SSL proxy load balancer
B. Network load balancer
C. HTTPS load balancer
D. TCP proxy load balancer
View answer
Correct Answer: A
Question #7
You have an application running on Compute Engine that uses BigQuery to generate some results that are stored in Cloud Storage. You want to ensure that none of the application instances have external IP addresses. Which two methods can you use to accomplish this? (Choose two.)
A. Enable Private Google Access on all the subnets
B. Enable Private Google Access on the VPC
C. Enable Private Services Access on the VPC
D. Create network peering between your VPC and BigQuery
E. Create a Cloud NAT, and route the application traffic via NAT gateway
View answer
Correct Answer: BE
Question #8
You have configured Cloud CDN using HTTP(S) load balancing as the origin for cacheable content. Compression is configured on the web servers, but responses served by Cloud CDN are not compressed. What is the most likely cause of the problem?
A. You have not configured compression in Cloud CDN
B. You have configured the web servers and Cloud CDN with different compression types
C. The web servers behind the load balancer are configured with different compression types
D. You have to configure the web servers to compress responses even if the request has a Via header
View answer
Correct Answer: D
Question #9
You have a web application that is currently hosted in the us-central1 region. Users experience high latency when traveling in Asia. You've configured a network load balancer, but users have not experienced a performance improvement. You want to decrease the latency. What should you do?
A. Configure a policy-based route rule to prioritize the traffic
B. Configure an HTTP load balancer, and direct the traffic to it
C. Configure Dynamic Routing for the subnet hosting the application
D. Configure the TTL for the DNS zone to decrease the time between updates
View answer
Correct Answer: B
Question #10
You want to create a service in GCP using IPv6. What should you do?
A. Create the instance with the designated IPv6 address
B. Configure a TCP Proxy with the designated IPv6 address
C. Configure a global load balancer with the designated IPv6 address
D. Configure an internal load balancer with the designated IPv6 address
View answer
Correct Answer: C
Question #11
You have ordered Dedicated Interconnect in the GCP Console and need to give the Letter of Authorization/Connecting Facility Assignment (LOA-CFA) to your cross-connect provider to complete the physical connection. Which two actions can accomplish this? (Choose two.)
A. Open a Cloud Support ticket under the Cloud Interconnect category
B. Download the LOA-CFA from the Hybrid Connectivity section of the GCP Console
C. Run gcloud compute interconnects describe
D. Check the email for the account of the NOC contact that you specified during the ordering process
E. Contact your cross-connect provider and inform them that Google automatically sent the LOA/CFA to them via email, and to complete the connection
View answer
Correct Answer: BD
Question #12
Your company is working with a partner to provide a solution for a customer. Both your company and the partner organization are using GCP. There are applications in the partner's network that need access to some resources in your company's VPC. There is no CIDR overlap between the VPCs. Which two solutions can you implement to achieve the desired results without compromising the security? (Choose two.)
A. VPC peering
B. Shared VPC
C. Cloud VPN
D. Dedicated Interconnect
E. Cloud NAT
View answer
Correct Answer: CD
Question #13
You have an application hosted on a Compute Engine virtual machine instance that cannot communicate with a resource outside of its subnet. When you review the flow and firewall logs, you do not see any denied traffic listed. During troubleshooting you find: • Flow logs are enabled for the VPC subnet, and all firewall rules are set to log. • The subnetwork logs are not excluded from Stackdriver. • The instance that is hosting the application can communicate outside the subnet. • Other instances within the su
A. The traffic is matching the expected ingress rule
B. The traffic is matching the expected egress rule
C. The traffic is not matching the expected ingress rule
D. The traffic is not matching the expected egress rule
View answer
Correct Answer: C

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number:


Copyright © 2024. Designer by SPOTO Official Website. All Rights Reserved.