Google Professional Cloud Network Engineer

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Create a Cloud VPN instance. Create a route-based VPN tunnel. Configure the appropriate local and remote traffic selectors to 0.0.0.0/0. Configure the appropriate static routes.

The question involves setting up a Cloud VPN Gateway with a non-BGP on-premises device using IKEv2. Google recommends route-based VPNs (over policy-based) for scalability, as they allow managing traffic via static routes instead of per-subnet tunnels. Since BGP is not supported, static routes are required. For route-based VPNs, traffic selectors should be set to 0.0.0.0/0 to allow routing decisions via static routes, enabling easy expansion by adding new routes without modifying the VPN tunnel. This minimizes operational overhead. Option D correctly uses a route-based tunnel with 0.0.0.0/0 selectors and static routes, aligning with Google's best practices.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Create a Cloud VPN instance. Create a route-based VPN tunnel. Configure the appropriate local and remote traffic selectors to 0.0.0.0/0. Configure the appropriate static routes.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

You need to deploy a VPN Gateway to connect your on-premises network to Google Cloud. Your on-premises VPN device does not support BGP and only works with IKEv2. To minimize downtime and operational overhead as your network scales, while adhering to Google's best practices, what is the recommended approach?

Exam-Like

Create a Cloud VPN instance. Create a policy-based VPN tunnel per subnet. Configure the appropriate local and remote traffic selectors to match your local and remote networks. Create the appropriate static routes.

13.0%

Create a Cloud VPN instance. Create a policy-based VPN tunnel. Configure the appropriate local and remote traffic selectors to match your local and remote networks. Configure the appropriate static routes.

26.1%

Create a Cloud VPN instance. Create a route-based VPN tunnel. Configure the appropriate local and remote traffic selectors to match your local and remote networks. Configure the appropriate static routes.

26.1%

Create a Cloud VPN instance. Create a route-based VPN tunnel. Configure the appropriate local and remote traffic selectors to 0.0.0.0/0. Configure the appropriate static routes.

34.8%