Google Professional Cloud Network Engineer

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: 1. Create one HA VPN gateway. 2. Create one tunnel for each of the two HA VPN gateway interfaces. 3. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device located in your on-premises data center.

To meet the 99.99% SLA requirement with minimal setup effort and without replacing the on-premises VPN termination device, the best approach is to use a single HA VPN gateway in Google Cloud. This gateway supports two interfaces, each requiring a tunnel. Both tunnels can be terminated on the single public IP address of the on-premises device, provided the device supports multiple tunnels (e.g., through different IKE IDs). This solution satisfies the SLA requirement without the need for additional hardware or complex configurations.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

You need to design a connection between your on-premises data center and a Google Cloud VPC using an IPsec VPN. The solution must meet a minimum SLA of 99.99%, support a single VPN termination device with only one public IP address, and require minimal setup effort. What is the recommended approach?

Exam-Like

Create two HA VPN gateways. 2. Create one tunnel on interface 0 of one gateway and create one tunnel on interface 1 of the other gateway. 3. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device located in your on-premises data center.

33.3%

Create one Classic VPN gateway and one HA VPN gateway. 2. Create one tunnel on the interface of the Classic VPN gateway and one tunnel on interface 1 of the HA VPN gateway. 3. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device located in your on-premises data center.

0.0%

Replace the existing on-premises VPN termination device with a new device that is configured with two different public IP addresses. 2. Create one HA VPN gateway. 3. Create one tunnel for each of the two HA VPN gateway interfaces. 4. Terminate each of the two tunnels on one of the two public IP addresses that is configured on the new VPN termination device located in your on-premises data center.

11.1%

Create one HA VPN gateway. 2. Create one tunnel for each of the two HA VPN gateway interfaces. 3. Terminate each of the two tunnels on the single public IP address that is configured on the VPN termination device located in your on-premises data center.