Topic 1 Question 195
You have been asked to create robust Virtual Private Network (VPN) connectivity between a new Virtual Private Cloud (VPC) and a remote site. Key requirements include dynamic routing, a shared address space of 10.19.0.1/22, and no overprovisioning of tunnels during a failover event. You want to follow Google- recommended practices to set up a high availability Cloud VPN. What should you do?
Use a custom mode VPC network, configure static routes, and use active/passive routing.
Use an automatic mode VPC network, configure static routes, and use active/active routing.
Use a custom mode VPC network, use Cloud Router border gateway protocol (BGP) routes, and use active/passive routing.
Use an automatic mode VPC network, use Cloud Router border gateway protocol (BGP) routes, and configure policy-based routing.
ユーザの投票
コメント(6)
- 正解だと思う選択肢: C
we need custom mode vpc so subnets are not created automatically (the ip range is mentioned in the question) also we will need active/passive HA VPN (as it is not mentioned we will have to use more than one HA VPN gateway).
Links : https://cloud.google.com/network-connectivity/docs/vpn/concepts/best-practices https://cloud.google.com/network-connectivity/docs/vpn/concepts/overview#active https://cloud.google.com/vpc/docs/vpc#subnet-ranges
👍 7theBestStudent2022/09/25 - 正解だと思う選択肢: C
Google Cloud Router On Google Cloud, dynamic routing can be established using Cloud Router. It exchanges network topology information through Border Gateway Protocol (BGP). Cloud Router advertises subnets from its VPC network to another router or gateway via BGP. This is great for setting up VPN between the cloud and on-prem, as topology changes automatically propagate with no manual intervention and higher redundancy for your systems.
You now have:
Discovery of remote networks Maintaining up-to-date routing information Choosing the best path to destination networks Ability to find a new best path if the current path is no longer available And a great side effect can be lower latency because Cloud Router learns routes through BGP which allows for optimal data paths to reach its destination, whether that be another network or a VPN gateway to on-premise. Cloud Router is also how Dedicated Interconnect can give you 10 gbp/s bandwidth between your cloud VPC and your peered on-premise data center.
👍 3Arulkumar2022/09/21 - 正解だと思う選択肢: C
C . Choose a Cloud VPN gateway that uses dynamic routing and the Border Gateway Protocol (BGP). Google recommends using HA VPN and deploying on-premises devices that support BGP.
Choose the appropriate tunnel configuration Choose the appropriate tunnel configuration based on the number of HA VPN gateways:
If you have a single HA VPN gateway, use an active/passive tunnel configuration.
If you have more than one HA VPN gateway, use an active/active tunnel configuration.
https://cloud.google.com/network-connectivity/docs/vpn/concepts/best-practices
👍 3Charumathi2022/10/09
シャッフルモード