ExpertGCP PCA · Question 39 · Domain 2: Managing and Provisioning a Solution Infrastructure
You need to configure a VPC network for a multi-tier application. The web tier must be accessible from the internet, but the database tier must be completely isolated from inbound internet traffic. Both tiers need to communicate with each other. Which TWO configurations should you apply? (Select TWO)
You need to configure a VPC network for a multi-tier application. The web tier must be accessible from the internet, but the database tier must be completely isolated from inbound internet traffic. Both tiers need to communicate with each other. Which TWO configurations should you apply? (Select TWO)
Answer options:
Place the web tier and database tier in separate subnets within the same Custom Mode VPC.
Create two separate VPCs and connect them using Cloud VPN.
Create firewall rules allowing ingress from the internet to the web tier, and ingress from the web tier to the database tier.
Assign external IP addresses to the database tier but block traffic using Cloud Armor.
Use an Auto Mode VPC to automatically isolate the tiers.
How to approach this question
Full Answer
Common mistakes
Practice the full GCP Professional Cloud Architect Practice Exam 4
50 questions · hints · full answers · grading