Answer-first summary for fast verification
Answer: Deploy your application on App Engine flexible environment and use Cloud VPN to limit access to the on-premises database.
The correct answer is D: Deploy your application on App Engine flexible environment and use Cloud VPN to limit access to the on-premises database. The App Engine flexible environment is more suitable for integrating with on-premises databases, particularly when security policies require the database to not be accessible through the public internet. The Cloud VPN provides a secure connection between your Google Cloud VPC and your on-premises network. While the App Engine standard environment can connect through Cloud VPN using a Serverless VPC Connector, this approach is more complex and adds additional overhead. Using the flexible environment simplifies the network architecture and aligns better with the requirement of avoiding public internet exposure.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You work as a cloud architect and are deploying an application on Google App Engine. The application must connect to a database hosted in your company's on-premises data center. Due to the company's security policy, the on-premises database must not be accessible via the public internet. Which approach should you take to ensure secure connectivity between your App Engine application and the on-premises database?
A
Deploy your application on App Engine standard environment and use App Engine firewall rules to limit access to the open on-premises database.
B
Deploy your application on App Engine standard environment and use Cloud VPN to limit access to the on-premises database.
C
Deploy your application on App Engine flexible environment and use App Engine firewall rules to limit access to the on-premises database.
D
Deploy your application on App Engine flexible environment and use Cloud VPN to limit access to the on-premises database.