Google Cloud Professional Cloud Network Engineer — Question 149

You are deploying an application that runs on Compute Engine instances. You need to determine how to expose your application to a new customer. You must ensure that your application meets the following requirements:

• Maps multiple existing reserved external IP addresses to the instance
• Processes IP Encapsulating Security Payload (ESP) traffic

What should you do?

Answer options

• A. Configure a target pool, and create protocol forwarding rules for each external IP address.
• B. Configure a backend service, and create an external network load balancer for each external IP address.
• C. Configure a target instance, and create a protocol forwarding rule for each external IP address to be mapped to the instance.
• D. Configure the Compute Engine instances’ network interface external IP address from None to Ephemeral. Add as many external IP addresses as required.

Correct answer: C

Explanation

The correct answer is C because it specifies creating a protocol forwarding rule for each external IP address directly to the target instance, which is necessary for handling ESP traffic. Option A is incorrect as target pools are not suitable for this scenario. Option B suggests using a backend service, which does not directly link the reserved IPs as required. Option D does not fulfill the requirement of mapping reserved IP addresses to the instance.