Google Cloud Professional Cloud Network Engineer — Question 123

You have configured a service on Google Cloud that connects to an on-premises service via a Dedicated Interconnect. Users are reporting recent connectivity issues. You need to determine whether the traffic is being dropped because of firewall rules or a routing decision. What should you do?

Answer options

• A. Use the Network Intelligence Center Connectivity Tests to test the connectivity between the VPC and the on-premises network.
• B. Use Network Intelligence Center Network Topology to check the traffic flow, and replay the traffic from the time period when the connectivity issue occurred.
• C. Configure VPC Flow Logs. Review the logs by filtering on the source and destination.
• D. Configure a Compute Engine instance on the same VPC as the service running on Google Cloud to run a traceroute targeted at the on-premises service.

Correct answer: A

Explanation

The correct answer is A because the Network Intelligence Center Connectivity Tests provide a straightforward way to assess the connectivity and determine if the issue arises from firewall rules or routing decisions. Options B, C, and D are useful for examining traffic but do not directly test connectivity in the same manner as option A does, making them less effective for this specific scenario.