Google Cloud Professional Cloud Network Engineer — Question 235

Your company uses Network Connectivity Center to connect its VPCs in Google Cloud. They plan to connect their on-premises data center to one of these VPCs by using HA VPN. The CIDR range of your on-premises network overlaps with the IP addresses in Google Cloud. You want your VMs in Google Cloud to connect directly to the IP address of the on-premises hosts. What should you do?

Answer options

• A. Configure a subnet of purpose REGIONAL_MANAGED_PROXY and use a Google Cloud application load balancer.
• C. Configure a subnet of purpose REGIONAL_MANAGED_PROXY and use a Google Cloud TCP proxy load balancer.
• D. Configure a subnet of purpose PRIVATE_NAT and use Private NAT for the Network Connectivity Center spokes.
• E. Configure a subnet of purpose PRIVATE_NAT and use Hybrid NAT.

Correct answer: D

Explanation

The correct answer is D, as configuring a subnet of purpose PRIVATE_NAT allows for the establishment of private connectivity to on-premises hosts while managing overlapping IP ranges. Options A and C involve load balancers that are not suitable for direct IP connectivity in this scenario, and option E does not address the need for direct access to on-premises IPs.