Your team has developed a new application that needs to run on a Google Kubernetes Engine (GKE) cluster. This application requires access to third-party services on the internet. However, your company's security policy mandates that no Compute Engine instances should have a public IP address on Google Cloud. Given these restrictions, what is the appropriate deployment strategy for your GKE cluster?

Exam-Like

Configure the GKE cluster as a private cluster, and configure Cloud NAT Gateway for the cluster subnet.

67.4%

Configure the GKE cluster as a private cluster. Configure Private Google Access on the Virtual Private Cloud (VPC).

14.5%

Configure the GKE cluster as a route-based cluster. Configure Private Google Access on the Virtual Private Cloud (VPC).

9.4%

Create a Compute Engine instance, and install a NAT Proxy on the instance. Configure all workloads on GKE to pass through this proxy to access third-party services on the Internet.

8.7%

Google Professional Cloud Architect

Get started today

Comments