Google Cloud Professional Cloud Network Engineer — Question 144

You are responsible for designing a new connectivity solution for your organization's enterprise network to access and use Google Workspace. You have an existing Shared VPC with Compute Engine instances in us-west1. Currently, you access Google Workspace via your service provider's internet access. You want to set up a direct connection between your network and Google. What should you do?

Answer options

• A. Order a Dedicated Interconnect connection in the same metropolitan area. Create a VLAN attachment, a Cloud Router in us-west1, and a Border Gateway Protocol (BGP) session between your Cloud Router and your router.
• B. Order a Direct Peering connection in the same metropolitan area. Configure a Border Gateway Protocol (BGP) session between Google and your router.
• C. Configure HA VPN in us-west1. Configure a Border Gateway Protocol (BGP) session between your Cloud Router and your on-premises data center.
• D. Order a Carrier Peering connection in the same metropolitan area. Configure a Border Gateway Protocol (BGP) session between Google and your router.

Correct answer: B

Explanation

The correct answer is B, as a Direct Peering connection provides a dedicated link to Google, allowing for better performance and security. Options A and D involve Dedicated Interconnect and Carrier Peering, which are not necessary for the direct access required in this scenario. Option C is incorrect because HA VPN does not establish the direct connection needed for accessing Google Workspace.