You need to test if your Compute Engine firewall rules are blocking traffic to a public-facing application. What is the correct troubleshooting step to take?

Exam-Like

Enable Firewall Rules Logging on the latest rules that were changed. Use Logs Explorer to analyze whether the rules are working correctly.

Connect to a bastion host in your VPC. Use a network traffic analyzer to determine at which point your requests are being blocked.

In a pre-production environment, disable all firewall rules individually to determine which one is blocking user traffic.

Enable VPC Flow Logs in your VPC. Use Logs Explorer to analyze whether the rules are working correctly.

Google Professional Cloud Security Engineer