Google Professional Cloud Network Engineer
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
You need to design a connection between your on-premises data center and a Google Cloud VPC using an IPsec VPN. The solution must meet a minimum SLA of 99.99%, support a single VPN termination device with only one public IP address, and require minimal setup effort. What is the recommended approach?
Explanation:
To meet the 99.99% SLA requirement with minimal setup effort and without replacing the on-premises VPN termination device, the best approach is to use a single HA VPN gateway in Google Cloud. This gateway supports two interfaces, each requiring a tunnel. Both tunnels can be terminated on the single public IP address of the on-premises device, provided the device supports multiple tunnels (e.g., through different IKE IDs). This solution satisfies the SLA requirement without the need for additional hardware or complex configurations.