You are designing a hybrid cloud environment for your organization. Your Google Cloud env…

Question

You are designing a hybrid cloud environment for your organization. Your Google Cloud environment is interconnected with your on-premises network using Cloud HA VPN and Cloud Router. The Cloud Router is configured with the default settings. Your on-premises DNS server is located at 192.168.20.88 and is protected by a firewall, and your Compute Engine resources are located at 10.204.0.0/24. Your Compute Engine resources need to resolve on-premises private hostnames using the domain corp.altostrat.com while still resolving Google Cloud hostnames. You want to follow Google-recommended practices. What should you do?

Accepted Answer

Correct answer: B. B. 1. Create a private forwarding zone in Cloud DNS for ‘corp.altostrat.com’ called corp-altostrat-com that points to 192.168 20.88.
2. Configure your on-premises firewall to accept traffic from 35.199.192.0/19
3. Set a custom route advertisement on the Cloud Router for 35.199.192.0/19. — The correct answer B outlines the necessary steps to create a private forwarding zone that allows resolution of the on-premises DNS while ensuring traffic is accepted from the correct range, which is critical for communication with the DNS server. Options A and C do not correctly configure the firewall or address the routing needs, while D introduces unnecessary complexity and incorrect configurations that deviate from Google’s recommended practices.

Google Cloud Professional Cloud Network Engineer — Question 136

Answer options

Correct answer: B

Explanation