Google Cloud Professional Data Engineer — Question 138

You are troubleshooting your Dataflow pipeline that processes data from Cloud Storage to BigQuery. You have discovered that the Dataflow worker nodes cannot communicate with one another. Your networking team relies on Google Cloud network tags to define firewall rules. You need to identify the issue while following Google-recommended networking security practices. What should you do?

Answer options

• A. Determine whether your Dataflow pipeline has a custom network tag set.
• B. Determine whether there is a firewall rule set to allow traffic on TCP ports 12345 and 12346 for the Dataflow network tag.
• C. Determine whether there is a firewall rule set to allow traffic on TCP ports 12345 and 12346 on the subnet used by Dataflow workers.
• D. Determine whether your Dataflow pipeline is deployed with the external IP address option enabled.

Correct answer: B

Explanation

The correct answer is B because it directly addresses the firewall rules associated with the Dataflow network tag, which is essential for allowing traffic between the worker nodes. Options A and D do not directly relate to the communication issue between worker nodes, and option C refers to the subnet rather than the specific network tag, which may not align with the security practices relied upon by the networking team.