Answer-first summary for fast verification
Answer: The firewall rule permitting SSH is limited to the internal VPC network.
The correct answer is **C** because firewall rules must be configured to allow SSH connections within the VPC network and potentially from external networks. Google Cloud Platform (GCP) firewall rules enable you to control traffic to and from your VM instances based on specified configurations. These rules are enforced at the virtual networking level, offering robust protection and traffic management regardless of the instances' operating systems. Each VPC network acts as a distributed firewall, with rules applied network-wide but evaluated per instance. This means GCP firewall rules govern traffic not just between your instances and external networks but also between instances within the same network. Source IP ranges can be defined to include addresses both inside and outside your VPC network, allowing for flexible traffic control.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Why might you be able to SSH into an instance from another instance in the same VPC by its internal IP address but not its external IP address?
A
The outgoing instance lacks the necessary permissions granted to its service account.
B
The external IP address is not enabled.
C
The firewall rule permitting SSH is limited to the internal VPC network.
D
The instance you're trying to access has an ephemeral address rather than a reserved one.
No comments yet.