Answer-first summary for fast verification
Answer: Enable and review Cloud Logging on your Cloud NAT gateway. Look for logs with errors matching the destination IP address of the public SaaS provider.
The intermittent TCP connection errors occurring at the same time daily suggest potential resource exhaustion, such as Cloud NAT port exhaustion. ICMP (which uses a different protocol) works, indicating basic network connectivity is intact. Cloud NAT logs can capture errors related to port allocation failures, which are likely during peak usage periods. Enabling and reviewing these logs (Option B) provides historical data to identify recurring NAT gateway issues. Connectivity Test (Option D) is useful for live analysis but might miss transient issues unless run during the error window. Cloud Armor (Option A) focuses on inbound traffic, and Firewall Insights (Option C) is less relevant since ICMP is allowed, making TCP-specific firewall denials unlikely.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You are investigating intermittent TCP connectivity issues between Google Cloud and a public SaaS provider over the public internet. While ICMP tests succeed, users report daily recurring connection failures. Which Google Cloud tools should you use to gather insights and troubleshoot potential issues within Google Cloud?
A
Enable and review Cloud Logging for Cloud Armor. Look for logs with errors matching the destination IP address of the public SaaS provider.
B
Enable and review Cloud Logging on your Cloud NAT gateway. Look for logs with errors matching the destination IP address of the public SaaS provider.
C
Enable the Firewall Insights API. Set the deny rule insights observation period to one day. Review the insights to assure there are no firewall rules denying traffic.
D
Create a Connectivity Test by using TCP, the source IP address of your test VM, and the destination IP address of the public SaaS provider. Review the live data plane analysis and take the next steps based on the test results.