Google Cloud Professional Cloud Security Engineer — Question 59

Your company requires the security and network engineering teams to identify all network anomalies within and across VPCs, internal traffic from VMs to VMs, traffic between end locations on the internet and VMs, and traffic between VMs to Google Cloud services in production. Which method should you use?

Answer options

• A. Define an organization policy constraint.
• B. Configure packet mirroring policies.
• C. Enable VPC Flow Logs on the subnet.
• D. Monitor and analyze Cloud Audit Logs.

Correct answer: B

Explanation

The correct answer is B because configuring packet mirroring allows you to capture and analyze all traffic flowing to and from the VMs, which is essential for identifying network anomalies. Option A is incorrect since organization policy constraints do not specifically monitor network traffic. Option C, while useful for logging, does not provide the detailed traffic analysis needed for anomaly detection. Option D focuses on audit logs, which track changes and access but do not capture real-time traffic data.