You are investigating intermittent TCP connectivity issues between Google Cloud and a public SaaS provider over the public internet. While ICMP tests succeed, users report daily recurring connection failures. Which Google Cloud tools should you use to gather insights and troubleshoot potential issues within Google Cloud?

Exam-Like

Enable and review Cloud Logging for Cloud Armor. Look for logs with errors matching the destination IP address of the public SaaS provider.

22.2%

Enable and review Cloud Logging on your Cloud NAT gateway. Look for logs with errors matching the destination IP address of the public SaaS provider.

33.3%

Enable the Firewall Insights API. Set the deny rule insights observation period to one day. Review the insights to assure there are no firewall rules denying traffic.

11.1%

Create a Connectivity Test by using TCP, the source IP address of your test VM, and the destination IP address of the public SaaS provider. Review the live data plane analysis and take the next steps based on the test results.

33.3%

Google Professional Cloud Network Engineer

Get started today

Comments