DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

Premium Professional Cloud Network Engineer Exam Sample and Realistic Exam Simulations, Google Professional Cloud Network Engineer | SPOTO

Prepare meticulously for the Professional Cloud Network Engineer exam with our premium exam sample and realistic exam simulations. As a Professional Cloud Network Engineer, proficiency in implementing and managing network architectures in Google Cloud is essential. Our exam sample provides valuable insight into the exam format and content, while our realistic exam simulations allow you to practice under exam-like conditions. Covering topics such as network services, application and container networking, hybrid and multi-cloud connectivity, VPC implementation, and security measures, our resources ensure thorough preparation. Utilize our exam simulator to assess your readiness and build confidence. Trust SPOTO for high-quality practice tests and expert guidance to excel in your Professional Cloud Network Engineer certification journey.
Take other online exams

Question #1
You want to apply a new Cloud Armor policy to an application that is deployed in Google Kubernetes Engine (GKE). You want to find out which target to use for your Cloud Armor policy. Which GKE resource should you use?
A. GKE Node
B. GKE Pod
C. GKE Cluster
D. GKE Ingress
View answer
Correct Answer: B
Question #2
You create multiple Compute Engine virtual machine instances to be used at TFTP servers. Which type of load balancer should you use?
A. HTTP(S) load balancer
B. SSL proxy load balancer
C. TCP proxy load balancer
D. Network load balancer
View answer
Correct Answer: D
Question #3
You want to set up two Cloud Routers so that one has an active Border Gateway Protocol (BGP) session, and the other one acts as a standby. Which BGP attribute should you use on your on-premises router?
A. AS-Path
B. Community
C. Local Preference
D. Multi-exit Discriminator
View answer
Correct Answer: D
Question #4
You converted an auto mode VPC network to custom mode. Since the conversion, some of your Cloud Deployment Manager templates are no longer working. You want to resolve the problem. What should you do?
A. Apply an additional IAM role to the Google API’s service account to allow custom mode networks
B. Update the VPC firewall to allow the Cloud Deployment Manager to access the custom mode networks
C. Explicitly reference the custom mode networks in the Cloud Armor whitelist
D. Explicitly reference the custom mode networks in the Deployment Manager templates
View answer
Correct Answer: D
Question #5
You work for a multinational enterprise that is moving to GCP. These are the cloud requirements: • An on-premises data center located in the United States in Oregon and New York with Dedicated Interconnects connected to Cloud regions us-west1 (primary HQ) and us-east4 (backup) • Multiple regional offices in Europe and APAC • Regional data processing is required in europe-west1 and australia-southeast1 • Centralized Network Administration Team Your security and compliance team requires a virtual inline secur
A. • Create 2 VPCs in a Shared VPC Host Project
B. • Create 2 VPCs in a Shared VPC Host Project
C. • Create 1 VPC in a Shared VPC Host Project
D. • Create 1 VPC in a Shared VPC Service Project
View answer
Correct Answer: A
Question #6
You are using a 10-Gbps direct peering connection to Google together with the gsutil tool to upload files to Cloud Storage buckets from on-premises servers. The on-premises servers are 100 milliseconds away from the Google peering point. You notice that your uploads are not using the full 10-Gbps bandwidth available to you. You want to optimize the bandwidth utilization of the connection. What should you do on your on-premises servers?
A. Tune TCP parameters on the on-premises servers
B. Compress files using utilities like tar to reduce the size of data being sent
C. Remove the -m flag from the gsutil command to enable single-threaded transfers
D. Use the perfdiag parameter in your gsutil command to enable faster performance: gsutil perfdiag gs://[BUCKET NAME]
View answer
Correct Answer: A
Question #7
You are increasing your usage of Cloud VPN between on-premises and GCP, and you want to support more traffic than a single tunnel can handle. You want to increase the available bandwidth using Cloud VPN. What should you do?
A. Double the MTU on your on-premises VPN gateway from 1460 bytes to 2920 bytes
B. Create two VPN tunnels on the same Cloud VPN gateway that point to the same destination VPN gateway IP address
C. Add a second on-premises VPN gateway with a different public IP address
D. Add a second Cloud VPN gateway in a different region than the existing VPN gateway
View answer
Correct Answer: C
Question #8
All the instances in your project are configured with the custom metadata enable-oslogin value set to FALSE and to block project-wide SSH keys. None of the instances are set with any SSH key, and no project-wide SSH keys have been configured. Firewall rules are set up to allow SSH sessions from any IP address range. You want to SSH into one instance. What should you do?
A. Open the Cloud Shell SSH into the instance using gcloud compute ssh
B. Set the custom metadata enable-oslogin to TRUE, and SSH into the instance using a third-party tool like putty or ssh
C. Generate a new SSH key pair
D. Generate a new SSH key pair
View answer
Correct Answer: B
Question #9
Your organization is deploying a single project for 3 separate departments. Two of these departments require network connectivity between each other, but the third department should remain in isolation. Your design should create separate network administrative domains between these departments. You want to minimize operational overhead. How should you design the topology?
A. Create a Shared VPC Host Project and the respective Service Projects for each of the 3 separate departments
B. Create 3 separate VPCs, and use Cloud VPN to establish connectivity between the two appropriate VPCs
C. Create 3 separate VPCs, and use VPC peering to establish connectivity between the two appropriate VPCs
D. Create a single project, and deploy specific firewall rules
View answer
Correct Answer: A
Question #10
You work for a university that is migrating to GCP. These are the cloud requirements: • On-premises connectivity with 10 Gbps • Lowest latency access to the cloud • Centralized Networking Administration Team New departments are asking for on-premises connectivity to their projects. You want to deploy the most cost-efficient interconnect solution for connecting the campus to Google Cloud. What should you do?
A. Use Shared VPC, and deploy the VLAN attachments and Interconnect in the host project
B. Use Shared VPC, and deploy the VLAN attachments in the service projects
C. Use standalone projects, and deploy the VLAN attachments in the individual projects
D. Use standalone projects and deploy the VLAN attachments and Interconnects in each of the individual projects
View answer
Correct Answer: A
Question #11
You want to deploy a VPN Gateway to connect your on-premises network to GCP. You are using a non BGP-capable on-premises VPN device. You want to minimize downtime and operational overhead when your network grows. The device supports only IKEv2, and you want to follow Google-recommended practices. What should you do?
A. • Create a Cloud VPN instance
B. • Create a Cloud VPN instance
C. • Create a Cloud VPN instance
D. • Create a Cloud VPN instance
View answer
Correct Answer: D
Question #12
Your company just completed the acquisition of Altostrat (a current GCP customer). Each company has a separate organization in GCP and has implemented a custom DNS solution. Each organization will retain its current domain and host names until after a full transition and architectural review is done in one year. These are the assumptions for both GCP environments. • Each organization has enabled full connectivity between all of its projects by using Shared VPC. • Both organizations strictly use the 10.0.0.
A. Provision Cloud Interconnect to connect both organizations together
B. Set up some variant of DNS forwarding and zone transfers in each organization
C. Connect VPCs in both organizations using Cloud VPN together with Cloud Router
D. Use Cloud DNS to create A records of all VMs and resources across all projects in both organizations
E. Create a third organization with a new host project, and attach all projects from your company and Altostrat to it using shared VPC
View answer
Correct Answer: CD
Question #13
You need to establish network connectivity between three Virtual Private Cloud networks, Sales, Marketing, and Finance, so that users can access resources in all three VPCs. You configure VPC peering between the Sales VPC and the Finance VPC. You also configure VPC peering between the Marketing VPC and the Finance VPC. After you complete the configuration, some users cannot connect to resources in the Sales VPC and the Marketing VPC. You want to resolve the problem. What should you do?
A. Configure VPC peering in a full mesh
B. Alter the routing table to resolve the asymmetric route
C. Create network tags to allow connectivity between all three VPCs
D. Delete the legacy network and recreate it to allow transitive peering
View answer
Correct Answer: A

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number: