Google Cloud Professional Cloud Network Engineer — Question 88

You have two Google Cloud projects in a perimeter to prevent data exfiltration. You need to move a third project inside the perimeter; however, the move could negatively impact the existing environment. You need to validate the impact of the change. What should you do?

Answer options

• A. Enable Firewall Rules Logging inside the third project.
• B. Modify the existing VPC Service Controls policy to include the new project in dry run mode.
• C. Monitor the Resource Manager audit logs inside the perimeter.
• D. Enable VPC Flow Logs inside the third project, and monitor the logs for negative impact.

Correct answer: B

Explanation

The correct choice is B because using dry run mode allows you to simulate the impact of adding the new project without making changes, providing insights on potential issues. Options A and D focus on logging but do not directly assess the policy impact, while C only reviews past logs without simulating future effects.