Topic 1 Question 131
Your company has a single Virtual Private Cloud (VPC) network deployed in Google Cloud with on-premises connectivity already in place. You are deploying a new application using Google Kubernetes Engine (GKE), which must be accessible only from the same VPC network and on-premises locations. You must ensure that the GKE control plane is exposed to a predefined list of on-premises subnets through private connectivity only. What should you do?
Create a GKE private cluster with a private endpoint for the control plane. Configure VPC Networking Peering export/import routes and custom route advertisements on the Cloud Routers. Configure authorized networks to specify the desired on-premises subnets.
Create a GKE private cluster with a public endpoint for the control plane. Configure VPC Networking Peering export/import routes and custom route advertisements on the Cloud Routers.
Create a GKE private cluster with a private endpoint for the control plane. Configure authorized networks to specify the desired on-premises subnets.
Create a GKE public cluster. Configure authorized networks to specify the desired on-premises subnets.
ユーザの投票
コメント(6)
- 正解だと思う選択肢: A
Answer is A. Link: https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters?hl=en#cp-on-prem-routing. “Configure your VPC network to export its custom routes in the peering relationship to the control plane's VPC network. The control plane's VPC network is already configured to import custom routes. This provides a path for the control plane to send packets back to on-premises resources.”
👍 4fra_pavi2022/12/10 A is correct
👍 3playpacman2022/12/01- 正解だと思う選択肢: A
A is correct to be able to connect from on-prem.
👍 3pfilourenco2022/12/04
シャッフルモード