Google Cloud Professional Cloud Network Engineer — Question 85

You have applications running in the us-west1 and us-east1 regions. You want to build a highly available VPN that provides 99.99% availability to connect your applications from your project to the cloud services provided by your partner's project while minimizing the amount of infrastructure required. Your partner's services are also in the us-west1 and us-east1 regions. You want to implement the simplest solution. What should you do?

Answer options

• A. Create one Cloud Router and one HA VPN gateway in each region of your VPC and your partner's VPC. Connect your VPN gateways to the partner's gateways. Enable global dynamic routing in each VPC.
• B. Create one Cloud Router and one HA VPN gateway in the us-west1 region of your VPC. Create one OpenVPN Access Server in each region of your partner's VPC. Connect your VPN gateway to your partner's servers.
• C. Create one OpenVPN Access Server in each region of your VPC and your partner's VPConnect your servers to the partner's servers.
• D. Create one Cloud Router and one HA VPN gateway in the us-west1 region of your VPC and your partner's VPC. Connect your VPN gateways to the partner's gateways with a pair of tunnels. Enable global dynamic routing in each VPC.

Correct answer: D

Explanation

Option D is correct because it provides redundancy and high availability by using HA VPN gateways and pairs of tunnels, while also enabling global dynamic routing for efficient routing across regions. The other options either do not meet the high availability requirement or involve more complexity and infrastructure than necessary.