Google Associate Cloud Engineer
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
Your VMs on Compute Engine need to connect with physical servers at a remote site using private IPs, requiring dynamic routing and a shared address space of 10.108.0.1/22. To ensure tunnels are not overprovisioned during a failover, what are some Google-recommended practices for setting up a high-availability Cloud VPN for this scenario?
Explanation:
Option B is correct because it involves creating a custom mode VPC network, which is necessary for specifying the exact subnet range (10.108.0.1/22) as required. Using Cloud Router with BGP routes supports dynamic routing, and active/passive routing ensures that tunnels are not overprovisioned during a failover event. This setup aligns with Google's best practices for high-availability Cloud VPN configurations. Options A, C, and D are incorrect due to their use of automatic mode VPC networks, static routes, or routing methods that do not meet the specified requirements for dynamic routing and failover management.