Google Cloud Professional Cloud Network Engineer — Question 67

You created a new VPC for your development team. You want to allow access to the resources in this VPC via SSH only.
How should you configure your firewall rules?

Answer options

• A. Create two firewall rules: one to block all traffic with priority 0, and another to allow port 22 with priority 1000.
• B. Create two firewall rules: one to block all traffic with priority 65536, and another to allow port 3389 with priority 1000.
• C. Create a single firewall rule to allow port 22 with priority 1000.
• D. Create a single firewall rule to allow port 3389 with priority 1000.

Correct answer: C

Explanation

The correct answer is C, as it allows SSH traffic on port 22 while keeping it simple with a single rule. Option A is incorrect because it also involves blocking all traffic, which is not necessary with a specific allow rule. Option B incorrectly allows port 3389, which is not required for SSH access. Option D also allows the wrong port (3389) instead of the necessary port (22).