Google Professional Cloud Developer

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Allow traffic on port 443 for a specific tag.

HipLocal needs to follow secure practices for firewall configuration. Allowing all traffic (B) is insecure. Blocking port 443 (A) would disable HTTPS, which is essential. Option D allows all traffic on port 443 to the entire network, which is overly permissive. The best practice is to restrict access using tags. Option C allows traffic on port 443 only for instances with a specific tag, adhering to the principle of least privilege and Google's recommended practices. This ensures only necessary instances are exposed, enhancing security while enabling required access.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Allow traffic on port 443 for a specific tag.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

HipLocal is configuring their access controls. What firewall configuration should they implement to meet their security and scalability requirements while adhering to Google-recommended practices?

Key Context for Reference:

Business Needs: Global expansion, compliance (e.g., GDPR), reduced management overhead.

Technical Requirements:

Usage metrics/monitoring.

Strong API authentication/authorization.

Enhanced logging with cloud analytics.

Serverless architecture for elastic scaling.

Secure internal app access.

Current GCP Setup:

APIs on Compute Engine VMs.

Single-instance MySQL DB.

No logging; basic uptime alerts.

(Note: The question focuses on firewall configuration, but the answer should align with the broader technical and compliance goals.)

Exam-Like

Block all traffic on port 443.

0.0%

Allow all traffic into the network.

6.7%

Allow traffic on port 443 for a specific tag.

66.7%

Allow all traffic on port 443 into the network.

26.7%