ExpertEasy1 markMultiple Choice
GCP PCA · Question 23 · Domain 2: Managing and Provisioning a Solution Infrastructure
You are designing a multi-tier application in Google Cloud. The web tier is in a public subnet, and the database tier is in a private subnet with no external IP addresses. The database instances need to download software updates from the internet. How should you configure this securely?
You are designing a multi-tier application in Google Cloud. The web tier is in a public subnet, and the database tier is in a private subnet with no external IP addresses. The database instances need to download software updates from the internet. How should you configure this securely?
Answer options:
A.
Assign ephemeral external IP addresses to the database instances.
B.
Configure Cloud NAT for the private subnet.
C.
Enable Private Google Access on the subnet.
D.
Set up a proxy server in the public subnet and route database traffic through it.
How to approach this question
Identify the managed service that provides outbound internet access for private instances.
Full Answer
B.Configure Cloud NAT for the private subnet.✓ Correct
Cloud NAT (Network Address Translation) is a fully managed service that allows VM instances without external IP addresses to connect to the internet. It provides outbound connectivity for updates and patches while blocking unsolicited inbound connections.
Common mistakes
Choosing Private Google Access (C). This is a very common trap. PGA only routes to Google services (like Cloud Storage), not the public internet.
Practice the full GCP Professional Cloud Architect Practice Exam 4
50 questions · hints · full answers · grading
More questions from this exam
Q01CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...MediumQ02CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...MediumQ03CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...HardQ04CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...HardQ05CASE STUDY: TechStream Gaming
Overview: 500 employees, $100M revenue. On-prem US/EU, 200 servers...Easy