Google Cloud Professional Cloud Network Engineer — Question 52

Your on-premises data center has 2 routers connected to your GCP through a VPN on each router. All applications are working correctly; however, all of the traffic is passing across a single VPN instead of being load-balanced across the 2 connections as desired.
During troubleshooting you find:
"¢ Each on-premises router is configured with the same ASN.
"¢ Each on-premises router is configured with the same routes and priorities.
"¢ Both on-premises routers are configured with a VPN connected to a single Cloud Router.
"¢ The VPN logs have no-proposal-chosen lines when the VPNs are connecting.
"¢ BGP session is not established between one on-premises router and the Cloud Router.
What is the most likely cause of this problem?

Answer options

• A. One of the VPN sessions is configured incorrectly.
• B. A firewall is blocking the traffic across the second VPN connection.
• C. You do not have a load balancer to load-balance the network traffic.
• D. BGP sessions are not established between both on-premises routers and the Cloud Router.

Correct answer: A

Explanation

The most likely cause of the issue is that one of the VPN sessions is configured incorrectly, which prevents the establishment of a BGP session and results in traffic not being load-balanced. The other options, such as a firewall blocking traffic or the absence of a load balancer, are not the primary issues since the VPNs are functioning, albeit suboptimally due to the misconfiguration.