To configure access to the remote address range 35.100.0.0/16 through Cloud NAT instead of using the external IP addresses of your VPC-native GKE Standard cluster nodes (with SNAT enabled), what steps should you take?

Note: Ensure the cluster's SNAT configuration aligns with Cloud NAT requirements.

Exam-Like

Configure nonMasqueradeCIDRs in the ip-masq-agent ConfigMap. Include the 35.100.0.0/16 range in the list.

40.0%

Configure nonMasqueradeCIDRs in the ip-masq-agent ConfigMap. Remove the 35.100.0.0/16 range from the list.

20.0%

Configure Cloud NAT and create an exclusion rule for any SNAT address translation.

20.0%

Configure Cloud NAT with nonMasqueradeCIDRs, and enable SNAT with the same configuration to allow traffic to 35.100.0.0/16.

20.0%

Google Professional Cloud Network Engineer