Domain 3: Designing for Security and Compliance — GCP PCA Practice Question 28

How to approach this question

Identify how to funnel outbound traffic from multiple dynamic VMs through a single static IP.

Full Answer

C.Deploy Cloud NAT and assign a static external IP address to the NAT gateway.✓ Correct

When an autoscaled group of VMs needs to communicate with an external service that requires IP allowlisting, you cannot rely on VM-level IPs. By placing the VMs in a private subnet and configuring Cloud NAT with a manual static IP allocation, all outbound traffic from the MIG will appear to originate from that single static IP.

Common mistakes

Choosing External Load Balancer (D). Load balancers are for ingress (incoming) traffic, not egress (outgoing).

How to approach this question

Full Answer

Common mistakes

Practice the full GCP Professional Cloud Architect Practice Exam 4

More questions from this exam