Answer-first summary for fast verification
Answer: Set up a Secure Web Proxy that allows access to the specific external web services. Configure applications to use the proxy for the web service requests.
The question requires monitoring, controlling, and logging access to external web services from Google Cloud applications. Option A (Secure Web Proxy) is the correct choice because it is a Google-managed service specifically designed for secure outbound (egress) access control. It allows granular control over which external destinations are accessible (by URL or domain), provides monitoring capabilities, logs access requests via Cloud Logging, and enforces organization-wide security policies. The community discussion strongly supports this with 100% consensus and upvoted comments explaining that Secure Web Proxy is the only option that satisfies all three requirements. Option B (Cloud NAT) only provides egress connectivity without monitoring, control, or logging capabilities. Option C (VPC firewall rules) allows access based on IP addresses but lacks URL/domain-level control and comprehensive logging. Option D (Google Cloud Armor) is designed for inbound traffic protection and DDoS mitigation, not for monitoring and controlling outbound access to external services.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your organization has Google Cloud applications that need to access external web services. You need to monitor, control, and log this external access. What should you do?
A
Set up a Secure Web Proxy that allows access to the specific external web services. Configure applications to use the proxy for the web service requests.
B
Set up a Cloud NAT instance to allow egress traffic from your VPC.
C
Configure VPC firewall rules to allow the services to access the IP addresses of required external web services.
D
Configure Google Cloud Armor to monitor and protect your applications by checking incoming traffic patterns for attack patterns.
No comments yet.