Topic 1 Question 150
Your team needs to create a Google Kubernetes Engine (GKE) cluster to host a newly built application that requires access to third-party services on the internet. Your company does not allow any Compute Engine instance to have a public IP address on Google Cloud. You need to create a deployment strategy that adheres to these guidelines. What should you do?
Configure the GKE cluster as a private cluster, and configure Cloud NAT Gateway for the cluster subnet.
Configure the GKE cluster as a private cluster. Configure Private Google Access on the Virtual Private Cloud (VPC).
Configure the GKE cluster as a route-based cluster. Configure Private Google Access on the Virtual Private Cloud (VPC).
Create a Compute Engine instance, and install a NAT Proxy on the instance. Configure all workloads on GKE to pass through this proxy to access third-party services on the Internet.
ユーザの投票
コメント(17)
Cloud NAT is the correct answer
👍 28ACE_ASPIRE2021/09/11- 正解だと思う選択肢: A
** Admins: More than 60% of the answers you have selected are wrong. Please correct them ASAP. I must appreciate community here for taking out time to share their perspective and help fellow learners.
"B" can never be an answer here as the Private Google Access enables internal access to Google APIs only whereas in question the ask is "access to third-party services on the internet"
👍 17RitwickKumar2022/08/19 - 正解だと思う選択肢: A
If you every have to expose GKE w/o exposing, use NAT - we have 2 options A and D. Now because NAT is a maanegd service you don't need Compute engine, hence D is wrong.
👍 4nkit2022/04/23
シャッフルモード