Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
To establish a reliable Virtual Private Network (VPN) connection between a newly created Virtual Private Cloud (VPC) on Google Cloud and an external site, you need to meet several specific requirements. These include utilizing dynamic routing, implementing a shared address space of 10.19.0.1/22, and ensuring that tunnels are not overprovisioned during any failover events. In line with Google-recommended practices for setting up a high availability Cloud VPN, how should you proceed to achieve this?
To establish a reliable Virtual Private Network (VPN) connection between a newly created Virtual Private Cloud (VPC) on Google Cloud and an external site, you need to meet several specific requirements. These include utilizing dynamic routing, implementing a shared address space of 10.19.0.1/22, and ensuring that tunnels are not overprovisioned during any failover events. In line with Google-recommended practices for setting up a high availability Cloud VPN, how should you proceed to achieve this?
Explanation:
The correct answer is C. For creating robust VPN connectivity with dynamic routing, it's recommended to use a custom mode VPC network and configure Cloud Router with Border Gateway Protocol (BGP) routes. This allows the VPC to advertise its subnets and learn routes dynamically. Additionally, using active/passive routing is suitable when a high availability VPN gateway is used, ensuring there is no overprovisioning of tunnels during a failover event. Custom mode VPC ensures subnets are not created automatically, which is necessary since the question specifies a shared address space of 10.19.0.1/22.