Latest Professional-Cloud-Architect Study Guides 2022 - With Test Engine PDF [Q31-Q55]

Latest Professional-Cloud-Architect Study Guides 2022 - With Test Engine PDF

Get New Professional-Cloud-Architect Practice Test Questions Answers

For more info visit:

Google-provided tutorials Community-provided tutorials

 

NEW QUESTION 31
You are deploying an application on App Engine that needs to integrate with an on-premises database. For security purposes, your on-premises database must not be accessible through the public Internet. What should you do?

• A. Deploy your application on App Engine flexible environment and use App Engine firewall rules to limit access to the on-premises database.
• B. Deploy your application on App Engine standard environment and use Cloud VPN to limit access to the onpremises database.
• C. Deploy your application on App Engine standard environment and use App Engine firewall rules to limit access to the open on-premises database.
• D. Deploy your application on App Engine flexible environment and use Cloud VPN to limit access to the onpremises database.

Answer: C

 

NEW QUESTION 32
You are using a single Cloud SQL instance to serve your application from a specific zone. You want to introduce high availability. What should you do?

• A. Create a failover replica instance in the same region, but in a different zone
• B. Create a read replica instance in a different region
• C. Create a failover replica instance in a different region
• D. Create a read replica instance in the same region, but in a different zone

Answer: C

Explanation:
https://cloud.google.com/sql/docs/mysql/high-availability

 

NEW QUESTION 33
Dress4Win has asked you for advice on how to migrate their on-premises MySQL deployment to the
cloud.
They want to minimize downtime and performance impact to their on-premises solution during the
migration.
Which approach should you recommend?

• A. Setup a MySQL replica server/slave in the cloud environment, and configure it for asynchronous
  replication from the MySQL master server on-premises until cutover.
• B. Create a dump of the MySQL replica server into the cloud environment, load it into: Google Cloud
  Datastore, and configure applications to read/write to Cloud Datastore at cutover.
• C. Create a dump of the on-premises MySQL master server, and then shut it down, upload it to the cloud
  environment, and load into a new MySQL cluster.
• D. Create a new MySQL cluster in the cloud, configure applications to begin writing to both on premises
  and cloud MySQL masters, and destroy the original cluster at cutover.

Answer: A

Explanation:
Professional Cloud Architect
Testlet 1
Company Overview
JencoMart is a global retailer with over 10,000 stores in 16 countries. The stores carry a range of goods,
such as groceries, tires, and jewelry. One of the company's core values is excellent customer service. In
addition, they recently introduced an environmental policy to reduce their carbon output by 50% over the
next 5 years.
Company Background
JencoMart started as a general store in 1931, and has grown into one of the world's leading brands, known
for great value and customer service. Over time, the company transitioned from only physical stores to a
stores and online hybrid model, with 25% of sales online. Currently, JencoMart has little presence in Asia,
but considers that market key for future growth.
Solution Concept
JencoMart wants to migrate several critical applications to the cloud but has not completed a technical
review to determine their suitability for the cloud and the engineering required for migration. They currently
host all of these applications on infrastructure that is at its end of life and is no longer supported.
Existing Technical Environment
JencoMart hosts all of its applications in 4 data centers: 3 in North American and 1 in Europe; most
applications are dual-homed.
JencoMart understands the dependencies and resource usage metrics of their on-premises architecture.
Application: Customer loyalty portal
LAMP (Linux, Apache, MySQL and PHP) application served from the two JencoMart-owned U.S. data
centers.
Database
Oracle Database stores user profiles

- 20 TB
- Complex table structure
- Well maintained, clean data
- Strong backup strategy
PostgreSQL database stores user credentials

- Single-homed in US West
- No redundancy
- Backed up every 12 hours
- 100% uptime service level agreement (SLA)
- Authenticates all users
Compute
30 machines in US West Coast, each machine has:

- Twin, dual core CPUs
- 32 GB of RAM
- Twin 250 GB HDD (RAID 1)
20 machines in US East Coast, each machine has:

- Single, dual-core CPU
- 24 GB of RAM
- Twin 250 GB HDD (RAID 1)
Storage
Access to shared 100 TB SAN in each location

Tape backup every week

Business Requirements
Optimize for capacity during peak periods and value during off-peak periods

Guarantee service availability and support

Reduce on-premises footprint and associated financial and environmental impact

Move to outsourcing model to avoid large upfront costs associated with infrastructure purchase

Expand services into Asia

Technical Requirements
Assess key application for cloud suitability

Modify applications for the cloud

Move applications to a new infrastructure

Leverage managed services wherever feasible

Sunset 20% of capacity in existing data centers

Decrease latency in Asia

CEO Statement
JencoMart will continue to develop personal relationships with our customers as more people access the
web. The future of our retail business is in the global market and the connection between online and in-
store experiences. As a large, global company, we also have a responsibility to the environment through
"green" initiatives and policies.
CTO Statement
The challenges of operating data centers prevent focus on key technologies critical to our long-term
success. Migrating our data services to a public cloud infrastructure will allow us to focus on big data and
machine learning to improve our service to customers.
CFO Statement
Since its founding, JencoMart has invested heavily in our data services infrastructure. However, because
of changing market trends, we need to outsource our infrastructure to ensure our long-term success. This
model will allow us to respond to increasing customer demand during peak periods and reduce costs.

 

NEW QUESTION 34
Your web application has several VM instances running within a VPC. You want to restrict communications between instances to only the paths and ports you authorize, but you don't want to rely on static IP addresses or subnets because the app can autoscale. How should you restrict communications?

• A. Use service accounts and configure the web application to authorize particular service accounts to have access
• B. Use separate VPCs to restrict traffic
• C. Use firewall rules based on network tags attached to the compute instances
• D. Use Cloud DNS and only allow connections from authorized hostnames

Answer: C

 

NEW QUESTION 35
Your company plans to migrate a multi-petabyte data set to the cloud. The data set must be available 24hrs a day. Your business analysts have experience only with using a SQL interface. How should you store the data to optimize it for ease of analysis?

• A. Insert data into Google Cloud SQL.
• B. Stream data into Google Cloud Datastore.
• C. Put flat files into Google Cloud Storage.
• D. Load data into Google BigQuery.

Answer: D

Explanation:
Google Big Query is for multi peta byte storage , HA(High availability) which means 24 hours, SQL interface .
https://medium.com/google-cloud/the-12-components-of-google-bigquery-c2b49829a7c7
https://cloud.google.com/solutions/bigquery-data-warehouse
https://cloud.google.com/bigquery/
BigQuery is Google's serverless, highly scalable, low cost enterprise data warehouse designed to make all your data analysts productive. Because there is no infrastructure to manage, you can focus on analyzing data to find meaningful insights using familiar SQL and you don't need a database administrator.
BigQuery enables you to analyze all your data by creating a logical data warehouse over managed, columnar storage as well as data from object storage, and spreadsheets.
References: https://cloud.google.com/bigquery/

 

NEW QUESTION 36
For this question, refer to the JencoMart case study.
JencoMart has built a version of their application on Google Cloud Platform that serves traffic to Asia. You want to measure success against their business and technical goals.
Which metrics should you track?

• A. The number of character sets present in the database
• B. Total visits, error rates, and latency from Asia
• C. Error rates for requests from Asia
• D. Latency difference between US and Asia
• E. Total visits and average latency for users in Asia

Answer: E

 

NEW QUESTION 37
You write a Python script to connect to Google BigQuery from a Google Compute Engine virtual machine.
The script is printing errors that it cannot connect to BigQuery. What should you do to fix the script?

• A. Create a new service account with BigQuery access and execute your script with that user
• B. Run your script on a new virtual machine with the BigQuery access scope enabled
• C. Install the latest BigQuery API client library for Python
• D. Install the bq component for gccloud with the command gcloud components install bq.

Answer: C

Explanation:
Explanation
https://cloud.google.com/bigquery/docs/python-client-migration
Applications that use BigQuery must be associated with a Google Cloud Platform Console project with the BigQuery API enabled.
Reference: https://cloud.google.com/bigquery/create-simple-app-api

 

NEW QUESTION 38
For this question, refer to the TerramEarth case study. You need to implement a reliable, scalable GCP solution for the data warehouse for your company, TerramEarth. Considering the TerramEarth business and technical requirements, what should you do?

• A. Replace the existing data warehouse with a Compute Engine instance with 96 CPUs.
• B. Replace the existing data warehouse with BigQuery. Use table partitioning.
• C. Replace the existing data warehouse with a Compute Engine instance with 96 CPUs. Add an additional Compute Engine pre-emptible instance with 32 CPUs.
• D. Replace the existing data warehouse with BigQuery. Use federated data sources.

Answer: D

Explanation:
https://cloud.google.com/solutions/bigquery-data-warehouse#external_sources
https://cloud.google.com/solutions/bigquery-data-warehouse

 

NEW QUESTION 39
You need to ensure reliability for your application and operations by supporting reliable task a scheduling for compute on GCP. Leveraging Google best practices, what should you do?

• A. Using the Cron service provided by App Engine, publishing messages directly to a message- processing utility service running on Compute Engine instances.
• B. Using the Cron service provided by Google Kubernetes Engine (GKE), publish messages directly to a message-processing utility service running on Compute Engine instances.
• C. Using the Cron service provided by App Engine, publish messages to a Cloud Pub/Sub topic.
  Subscribe to that topic using a message-processing utility service running on Compute Engine instances.
• D. Using the Cron service provided by GKE, publish messages to a Cloud Pub/Sub topic. Subscribe to that topic using a message-processing utility service running on Compute Engine instances.

Answer: C

 

NEW QUESTION 40
An application development team believes their current logging tool will not meet their needs for their new cloud-based product. They want a bettor tool to capture errors and help them analyze their historical log dat a. You want to help them find a solution that meets their needs, what should you do?

• A. Help them upgrade their current tool to take advantage of any new features.
• B. Send them a list of online resources about logging best practices.
• C. Direct them to download and install the Google StackDriver logging agent.
• D. Help them define their requirements and assess viable logging tools.

Answer: D

Explanation:
Reference:
Help them define their requirements and assess viable logging tools. They know the requirements and the existing tools' problems. While it's true StackDriver Logging and Error Reporting possibly meet all their requirements, there might be other tools also meet their need. They need you to provide expertise to make assessment for new tools, specifically, logging tools that can "capture errors and help them analyze their historical log data".
References: https://cloud.google.com/logging/docs/agent/installation

 

NEW QUESTION 41
You have an application that makes HTTP requests to Cloud Storage. Occasionally the requests fail with HTTP status codes of 5xx and 429.
How should you handle these types of errors?

• A. Implement retry logic using a truncated exponential backoff strategy.
• B. Use gRPC instead of HTTP for better performance.
• C. Make sure the Cloud Storage bucket is multi-regional for geo-redundancy.
• D. Monitor https://status.cloud.google.com/feed.atom and only make requests if Cloud Storage is not reporting an incident.

Answer: B

Explanation:
Explanation
Reference https://cloud.google.com/storage/docs/json_api/v1/status-codes

 

NEW QUESTION 42
For this question, refer to the Mountkirk Games case study. Mountkirk Games wants you to design a way
to test the analytics platform's resilience to changes in mobile network latency. What should you do?

• A. Deploy failure injection software to the game analytics platform that can inject additional latency to
  mobile client analytics traffic.
• B. Create an opt-in beta of the game that runs on players' mobile devices and collects response times
  from analytics endpoints running in Google Cloud Platform regions all over the world.
• C. Add the ability to introduce a random amount of delay before beginning to process analytics files
  uploaded from mobile devices.
• D. Build a test client that can be run from a mobile phone emulator on a Compute Engine virtual machine,
  and run multiple copies in Google Cloud Platform regions all over the world to generate realistic traffic.

Answer: C

 

NEW QUESTION 43
The JencoMart security team requires that all Google Cloud Platform infrastructure is deployed using a least privilege model with separation of duties for administration between production and development resources.
What Google domain and project structure should you recommend?

• A. Create two G Suite accounts to manage users: one for development/test/staging and one for production.
  Each account should contain one project for every application
• B. Create a single G Suite account to manage users with one project for the development/test/staging environment and one project for the production environment
• C. Create two G Suite accounts to manage users: one with a single project for all development applications and one with a single project for all production applications
• D. Create a single G Suite account to manage users with each stage of each application in its own project

Answer: B

Explanation:
Note: The principle of least privilege and separation of duties are concepts that, although semantically different, are intrinsically related from the standpoint of security. The intent behind both is to prevent people from having higher privilege levels than they actually need
* Principle of Least Privilege: Users should only have the least amount of privileges required to perform their job and no more. This reduces authorization exploitation by limiting access to resources such as targets, jobs, or monitoring templates for which they are not authorized.
* Separation of Duties: Beyond limiting user privilege level, you also limit user duties, or the specific jobs they can perform. No user should be given responsibility for more than one related function. This limits the ability of a user to perform a malicious action and then cover up that action.
Reference: https://cloud.google.com/kms/docs/separation-of-duties

 

NEW QUESTION 44
You want to optimize the performance of an accurate, real-time, weather-charting application. The data comes from 50,000 sensors sending 10 readings a second, in the format of a timestamp and sensor reading. Where should you store the data?

• A. Google Cloud SQL
• B. Google Cloud Bigtable
• C. Google BigQuery
• D. Google Cloud Storage

Answer: B

Explanation:
It is time-series data, So Big Table.
https://cloud.google.com/bigtable/docs/schema-design-time-series

 

NEW QUESTION 45
You have deployed several instances on Compute Engine. As a security requirement, instances cannot have a public IP address. There is no VPN connection between Google Cloud and your office, and you need to connect via SSH into a specific machine without violating the security requirements. What should you do?

• A. Configure Identity-Aware Proxy (IAP) for the instance and ensure that you have the role of IAP-secured Tunnel User. Use the gcloud command line tool to ssh into the instance.
• B. Configure Cloud NAT on the subnet where the instance is hosted. Create an SSH connection to the Cloud NAT IP address to reach the instance.
• C. Create a bastion host in the network to SSH into the bastion host from your office location. From the bastion host, SSH into the desired instance.
• D. Add all instances to an unmanaged instance group. Configure TCP Proxy Load Balancing with the instance group as a backend. Connect to the instance using the TCP Proxy IP.

Answer: A

Explanation:
https://cloud.google.com/iap/docs/using-tcp-forwarding#tunneling_with_ssh Leveraging the BeyondCorp security model. "This January, we enhanced context-aware access capabilities in Cloud Identity-Aware Proxy (IAP) to help you protect SSH and RDP access to your virtual machines (VMs)-without needing to provide your VMs with public IP addresses, and without having to set up bastion hosts. " https://cloud.google.com/blog/products/identity-security/cloud-iap-enables-context-aware-access-to-vms-via-ssh-and-rdp-without-bastion-hosts

 

NEW QUESTION 46
Your customer is moving their corporate applications to Google Cloud Platform. The security team wants detailed visibility of all projects in the organization. You provision the Google Cloud Resource Manager and set up yourself as the org admin.
What Google Cloud Identity and Access Management (Cloud IAM) roles should you give to the security team?

• A. Org admin, project browser
• B. Org viewer, project owner
• C. Project owner, network admin
• D. Org viewer, project viewer

Answer: D

 

NEW QUESTION 47
For this question, refer to the Dress4Win case study. You want to ensure that your on-premises architecture meets business requirements before you migrate your solution.
What change in the on-premises architecture should you make?

• A. Downgrade MySQL to v5.7, which is supported by Cloud SQL for MySQL.
• B. Containerize the micro services and host them in Google Kubernetes Engine.
• C. Replace RabbitMQ with Google Pub/Sub.
• D. Resize compute resources to match predefined Compute Engine machine types.

Answer: D

 

NEW QUESTION 48
Operational parameters such as oil pressure are adjustable on each of TerramEarth's vehicles to increase their efficiency, depending on their environmental conditions. Your primary goal is to increase the operating efficiency of all 20 million cellular and unconnected vehicles in the field.
How can you accomplish this goal?

• A. Capture all operating data, train machine learning models that identify ideal operations, and host in Google Cloud Machine Learning (ML) Platform to make operational adjustments automatically
• B. Capture all operating data, train machine learning models that identify ideal operations, and run locally to make operational adjustments automatically
• C. Implement a Google Cloud Dataflow streaming job with a sliding window, and use Google Cloud Messaging (GCM) to make operational adjustments automatically
• D. Have you engineers inspect the data for patterns, and then create an algorithm with rules that make operational adjustments automatically

Answer: B

Explanation:
Explanation/Reference:
TerramEarth, B
Testlet 1
Company Overview
TerramEarth manufactures heavy equipment for the mining and agricultural industries. About 80% of their business is from mining and 20% from agriculture. They currently have over 500 dealers and service centers in 100 countries. Their mission is to build products that make their customers more productive.
Solution Concept
There are 20 million TerramEarth vehicles in operation that collect 120 fields of data per second. Data is stored locally on the vehicle and can be accessed for analysis when a vehicle is serviced. The data is downloaded via a maintenance port. This same port can be used to adjust operational parameters, allowing the vehicles to be upgraded in the field with new computing modules.
Approximately 200,000 vehicles are connected to a cellular network, allowing TerramEarth to collect data directly. At a rate of 120 fields of data per second, with 22 hours of operation per day, TerramEarth collects a total of about 9 TB/day from these connected vehicles.
Existing Technical Environment
TerramEarth's existing architecture is composed of Linux and Windows-based systems that reside in a single U.S, west coast based data center. These systems gzip CSV files from the field and upload via FTP, and place the data in their data warehouse. Because this process takes time, aggregated reports are based on data that is 3 weeks old.
With this data, TerramEarth has been able to preemptively stock replacement parts and reduce unplanned downtime of their vehicles by 60%. However, because the data is stale, some customers are without their vehicles for up to 4 weeks while they wait for replacement parts.
Business Requirements
* Decrease unplanned vehicle downtime to less than 1 week
* Support the dealer network with more data on how their customers use their equipment to better position new products and services
* Have the ability to partner with different companies - especially with seed and fertilizer suppliers in the fast-growing agricultural business - to create compelling joint offerings for their customers Technical Requirements
* Expand beyond a single datacenter to decrease latency to the American midwest and east coast
* Create a backup strategy
* Increase security of data transfer from equipment to the datacenter
* Improve data in the data warehouse
* Use customer and equipment data to anticipate customer needs
Application 1: Data ingest
A custom Python application reads uploaded datafiles from a single server, writes to the data warehouse.
Compute:
* Windows Server 2008 R2
- 16 CPUs
- 128 GB of RAM
- 10 TB local HDD storage
Application 2: Reporting
An off the shelf application that business analysts use to run a daily report to see what equipment needs repair. Only 2 analysts of a team of 10 (5 west coast, 5 east coast) can connect to the reporting application at a time.
Compute:
* Off the shelf application. License tied to number of physical CPUs
- Windows Server 2008 R2
- 16 CPUs
- 32 GB of RAM
- 500 GB HDD
Data warehouse:
* A single PostgreSQL server
- RedHat Linux
- 64 CPUs
- 128 GB of RAM
- 4x 6TB HDD in RAID 0
Executive Statement
Our competitive advantage has always been in our manufacturing process, with our ability to build better vehicles for lower cost than our competitors. However, new products with different approaches are constantly being developed, and I'm concerned that we lack the skills to undergo the next wave of transformations in our industry. My goals are to build our skills while addressing immediate market needs through incremental innovations.

 

NEW QUESTION 49
Your company creates rendering software which users can download from the company website.
Your company has customers all over the world. You want to minimize latency for all your customers. You want to follow Google-recommended practices.
How should you store the files?

• A. Save the files in multiple Multi-Regional Cloud Storage buckets, one bucket per multi-region.
• B. Save the files in multiple Regional Cloud Storage buckets, one bucket per zone per region.
• C. Save the files in a Multi-Regional Cloud Storage bucket.
• D. Save the files in a Regional Cloud Storage bucket, one bucket per zone of the region.

Answer: D

 

NEW QUESTION 50
Case Study: 4 - Dress4Win case study
Company Overview
Dress4win is a web-based company that helps their users organize and manage their personal wardrobe using a website and mobile application. The company also cultivates an active social network that connects their users with designers and retailers. They monetize their services through advertising, e-commerce, referrals, and a freemium app model.
Company Background
Dress4win's application has grown from a few servers in the founder's garage to several hundred servers and appliances in a colocated data center. However, the capacity of their infrastructure is now insufficient for the application's rapid growth. Because of this growth and the company's desire to innovate faster, Dress4win is committing to a full migration to a public cloud.
Solution Concept
For the first phase of their migration to the cloud, Dress4win is considering moving their development and test environments. They are also considering building a disaster recovery site, because their current infrastructure is at a single location. They are not sure which components of their architecture they can migrate as is and which components they need to change before migrating them.
Existing Technical Environment
The Dress4win application is served out of a single data center location.
Databases:
MySQL - user data, inventory, static data
* Redis - metadata, social graph, caching
* Application servers:
Tomcat - Java micro-services
* Nginx - static content
* Apache Beam - Batch processing
* Storage appliances:
iSCSI for VM hosts
* Fiber channel SAN - MySQL databases
* NAS - image storage, logs, backups
* Apache Hadoop/Spark servers:
Data analysis
* Real-time trending calculations
* MQ servers:
Messaging
* Social notifications
* Events
* Miscellaneous servers:
Jenkins, monitoring, bastion hosts, security scanners
* Business Requirements
* Build a reliable and reproducible environment with scaled parity of production. Improve security by defining and adhering to a set of security and Identity and Access Management (IAM) best practices for cloud.
Improve business agility and speed of innovation through rapid provisioning of new resources.
Analyze and optimize architecture for performance in the cloud. Migrate fully to the cloud if all other requirements are met.
Technical Requirements
Evaluate and choose an automation framework for provisioning resources in cloud. Support failover of the production environment to cloud during an emergency. Identify production services that can migrate to cloud to save capacity.
Use managed services whenever possible.
Encrypt data on the wire and at rest.
Support multiple VPN connections between the production data center and cloud environment.
CEO Statement
Our investors are concerned about our ability to scale and contain costs with our current infrastructure. They are also concerned that a new competitor could use a public cloud platform to offset their up-front investment and freeing them to focus on developing better features.
CTO Statement
We have invested heavily in the current infrastructure, but much of the equipment is approaching the end of its useful life. We are consistently waiting weeks for new gear to be racked before we can start new projects. Our traffic patterns are highest in the mornings and weekend evenings; during other times, 80% of our capacity is sitting idle.
CFO Statement
Our capital expenditure is now exceeding our quarterly projections. Migrating to the cloud will likely cause an initial increase in spending, but we expect to fully transition before our next hardware refresh cycle. Our total cost of ownership (TCO) analysis over the next 5 years puts a cloud strategy between 30 to 50% lower than our current model.
For this question, refer to the Dress4Win case study.
As part of their new application experience, Dress4Wm allows customers to upload images of themselves. The customer has exclusive control over who may view these images. Customers should be able to upload images with minimal latency and also be shown their images quickly on the main application page when they log in. Which configuration should Dress4Win use?

• A. Use a distributed file system to store customers' images. As storage needs increase, add more persistent disks and/or nodes. Use a Google Cloud SQL database to maintain metadata that maps each customer's ID to their image files.
• B. Store image files in a Google Cloud Storage bucket. Add custom metadata to the uploaded images in Cloud Storage that contains the customer's unique ID.
• C. Store image files in a Google Cloud Storage bucket. Use Google Cloud Datastore to maintain metadata that maps each customer's ID and their image files.
• D. Use a distributed file system to store customers' images. As storage needs increase, add more persistent disks and/or nodes. Assign each customer a unique ID, which sets each file's owner attribute, ensuring privacy of images.

Answer: B

 

NEW QUESTION 51
For this question, refer to the JencoMart case study.
JencoMart has built a version of their application on Google Cloud Platform that serves traffic to Asia.
You want to measure success against their business and technical goals. Which metrics should you track?

• A. The number of character sets present in the database
• B. Total visits, error rates, and latency from Asia
• C. Error rates for requests from Asia
• D. Latency difference between US and Asia
• E. Total visits and average latency for users in Asia

Answer: E

 

NEW QUESTION 52
Your application needs to process credit card transactions. You want the smallest scope of Payment Card Industry (PCI) compliance without compromising the ability to analyze transactional data and trends relating to which payment methods are used. How should you design your architecture?

• A. Create a tokenizer service and store only tokenized data.
• B. Create separate subnetworks and isolate the components that process credit card data.
• C. Enable Logging export to Google BigQuery and use ACLs and views to scope the data shared with the auditor.
• D. Create separate projects that only process credit card data.
• E. Streamline the audit discovery phase by labeling all of the virtual machines (VMs) that process PCI data.

Answer: A

Explanation:
Reference:
https://cloud.google.com/solutions/pci-dss-compliance-in-gcp

 

NEW QUESTION 53
Your company has decided to build a backup replica of their on-premises user authentication PostgreSQL database on Google Cloud Platform. The database is 4 TB, and large updates are frequent. Replication requires private address space communication.
Which networking approach should you use?

• A. A NAT and TLS translation gateway installed on-premises
• B. Google Cloud VPN connected to the data center network
• C. A Google Compute Engine instance with a VPN server installed connected to the data center network
• D. Google Cloud Dedicated Interconnect

Answer: D

Explanation:
Explanation/Reference:
Explanation:
Google Cloud Dedicated Interconnect provides direct physical connections and RFC 1918 communication between your on-premises network and Google's network. Dedicated Interconnect enables you to transfer large amounts of data between networks, which can be more cost effective than purchasing additional bandwidth over the public Internet or using VPN tunnels.
Benefits:
Traffic between your on-premises network and your VPC network doesn't traverse the public Internet.

Traffic traverses a dedicated connection with fewer hops, meaning there are less points of failure where traffic might get dropped or disrupted.
Your VPC network's internal (RFC 1918) IP addresses are directly accessible from your on-premises

network. You don't need to use a NAT device or VPN tunnel to reach internal IP addresses. Currently, you can only reach internal IP addresses over a dedicated connection. To reach Google external IP addresses, you must use a separate connection.
You can scale your connection to Google based on your needs. Connection capacity is delivered over

one or more 10 Gbps Ethernet connections, with a maximum of eight connections (80 Gbps total per interconnect).
The cost of egress traffic from your VPC network to your on-premises network is reduced. A dedicated

connection is generally the least expensive method if you have a high-volume of traffic to and from Google's network.
References: https://cloud.google.com/interconnect/docs/details/dedicated

 

NEW QUESTION 54
For this question, refer to the TerramEarth case study. TerramEarth has decided to store data files in
Cloud Storage. You need to configure Cloud Storage lifecycle rule to store 1 year of data and minimize file
storage cost.
Which two actions should you take?

• A. Create a Cloud Storage lifecycle rule with Age: "90", Storage Class: "Standard", and Action: "Set to
  Nearline", and create a second GCS life-cycle rule with Age: "91", Storage Class: "Nearline", and
  Action: "Set to Coldline".
• B. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Coldline", and Action: "Set to
  Nearline", and create a second GCS life-cycle rule with Age: "91", Storage Class: "Coldline", and
  Action: "Set to Nearline".
• C. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Standard", and Action: "Set to
  Coldline", and create a second GCS life-cycle rule with Age: "365", Storage Class: "Nearline", and
  Action: "Delete".
• D. Create a Cloud Storage lifecycle rule with Age: "30", Storage Class: "Standard", and Action: "Set to
  Coldline", and create a second GCS life-cycle rule with Age: "365", Storage Class: "Coldline", and
  Action: "Delete".

Answer: C

 

NEW QUESTION 55
......

Professional-Cloud-Architect Dumps and Exam Test Engine: https://testinsides.vcedumps.com/Professional-Cloud-Architect-examcollection.html