Topic 1 Question 55

Professional Cloud Database Engineer

Topic 1 Question 55
You are writing an application that will run on Cloud Run and require a database running in the Cloud SQL managed service. You want to secure this instance so that it only receives connections from applications running in your VPC environment in Google Cloud. What should you do?
- 1. Create your instance with a specified external (public) IP address.
  2. Choose the VPC and create firewall rules to allow only connections from Cloud Run into your instance.
  3. Use Cloud SQL Auth proxy to connect to the instance.
- 1. Create your instance with a specified external (public) IP address.
  2. Choose the VPC and create firewall rules to allow only connections from Cloud Run into your instance.
  3. Connect to the instance using a connection pool to best manage connections to the instance.
- 1. Create your instance with a specified internal (private) IP address.
  2. Choose the VPC with private service connection configured.
  3. Configure the Serverless VPC Access connector in the same VPC network as your Cloud SQL instance.
  4. Use Cloud SQL Auth proxy to connect to the instance.
- 1. Create your instance with a specified internal (private) IP address.
  2. Choose the VPC with private service connection configured.
  3. Configure the Serverless VPC Access connector in the same VPC network as your Cloud SQL instance.
  4. Connect to the instance using a connection pool to best manage connections to the instance.
ユーザの投票
コメント(9)
- 正解だと思う選択肢: D
  It's D, CloudSQL Auth proxy is not used when connecting to Private IP https://cloud.google.com/sql/docs/mysql/connect-run#configure https://cloud.google.com/sql/docs/mysql/connect-run#connection-pools
  
  👍 7
  chelbsik2022/12/25
- 正解だと思う選択肢: C
  C is the correct answer Requirements for using the Cloud SQL Auth proxy To use the Cloud SQL Auth proxy, you must meet the following requirements:
  
  The Cloud SQL Admin API must be enabled. You must provide the Cloud SQL Auth proxy with Google Cloud authentication credentials. You must provide the Cloud SQL Auth proxy with a valid database user account and password. The instance must either have a public IPv4 address, or be configured to use private IP.
  
  The public IP address does not need to be accessible to any external address (it does not need to be added as an authorized network address).
  
  👍 3
  GCP722022/12/28
- Agree with chelbsik's point re. Cloud SQL Auth proxy not required with Cloud Run - vote D.
  
  👍 3
  sp572022/12/30
シャッフルモード

ユーザの投票

コメント(9)