Answer-first summary for fast verification
Answer: Create the instance without a public IP address.
The correct answer is A: Create the instance without a public IP address. By not assigning a public IP address to the instance, you ensure that it cannot be accessed directly from the internet. Other options, such as enabling Private Google Access (B), relate to accessing Google services without a public IP but do not inherently prevent public internet traffic. Option C focuses on egress traffic, and option D is about routing traffic over the VPN, which is not specifically about preventing public internet access to the instance.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company operates workloads on Google Cloud's Compute Engine as well as on on-premises infrastructure. The setup includes a Google Cloud Virtual Private Cloud (VPC) that is integrated with your Wide Area Network (WAN) via a Virtual Private Network (VPN). You need to deploy a new Compute Engine instance and make certain that it is fully isolated from public Internet traffic. What steps should you take to accomplish this?
A
Create the instance without a public IP address.
B
Create the instance with Private Google Access enabled.
C
Create a deny-all egress firewall rule on the VPC network.
D
Create a route on the VPC to route all traffic to the instance over the VPN tunnel.
No comments yet.