Your enterprise organization has 50 different departments, each requiring their own GCP project for billing and isolation. However, the central security team mandates that all network traffic must route through a single set of firewall rules and a central VPN connection to on-premises. How should you design the network architecture?
You are designing a hybrid DNS architecture. On-premises servers need to resolve internal GCP hostnames (e.g., `my-db.us-central1.c.my-project.internal`), and GCP VMs need to resolve on-premises hostnames (e.g., `app.corp.local`). How should you configure Cloud DNS?
Your company is migrating a data-intensive application to Google Cloud. The application requires a hybrid connection to an on-premises database. The connection must guarantee 10 Gbps of bandwidth and have an SLA of 99.99%. Which connectivity option should you choose?
You are the network administrator for a large GCP organization. The security team wants to enforce a rule that blocks all outbound SSH traffic to the internet across ALL projects in the organization. Individual project owners must not be able to override this rule. Which TWO steps should you take? (Select TWO)
Full answers, grading, and explanations on why each answer is correct.
Expert