Answer-first summary for fast verification
Answer: Create 1 VPC in a Shared VPC Host Project Configure a 2-NIC instance in zone us-west1-a in the Host Project Attach NIC0 in us-west1 subnet of the Host Project Attach NIC1 in us-west1 subnet of the Host Project Deploy the instance Configure the necessary routes and firewall rules to pass traffic through the instance
The correct approach involves creating a single VPC in a Shared VPC Host Project and configuring a 2-NIC instance within the same zone (us-west1-a) in the Host Project. This setup allows the instance to be attached to two different subnets within the same VPC, enabling the necessary L7 inspection for URL filtering. The other options either incorrectly suggest using multiple VPCs, which is not feasible for a single VM, or propose configurations in Service Projects that do not align with the centralized network administration requirement. Therefore, the correct answer is to follow the steps outlined in option C.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You work for a multinational enterprise migrating to GCP with the following requirements:
us-west1 (primary HQ) and us-east4 (backup)europe-west1 and australia-southeast1Your security team mandates a virtual inline security appliance for Layer 7 inspection (URL filtering) to be deployed in us-west1.
What should you do?
A
Create 2 VPCs in a Shared VPC Host Project Configure a 2-NIC instance in zone us-west1-a in the Host Project Attach NIC0 in VPC #1 us-west1 subnet of the Host Project Attach NIC1 in VPC #2 us-west1 subnet of the Host Project Deploy the instance Configure the necessary routes and firewall rules to pass traffic through the instance
B
Create 2 VPCs in a Shared VPC Host Project Configure a 2-NIC instance in zone us-west1-a in the Service Project Attach NIC0 in VPC #1 us-west1 subnet of the Host Project Attach NIC1 in VPC #2 us-west1 subnet of the Host Project Deploy the instance Configure the necessary routes and firewall rules to pass traffic through the instance
C
Create 1 VPC in a Shared VPC Host Project Configure a 2-NIC instance in zone us-west1-a in the Host Project Attach NIC0 in us-west1 subnet of the Host Project Attach NIC1 in us-west1 subnet of the Host Project Deploy the instance Configure the necessary routes and firewall rules to pass traffic through the instance
D
Create 1 VPC in a Shared VPC Service Project Configure a 2-NIC instance in zone us-west1-a in the Service Project Attach NIC0 in us-west1 subnet of the Service Project Attach NIC1 in us-west1 subnet of the Service Project Deploy the instance Configure the necessary routes and firewall rules to pass traffic through the instance