What should you do?


You want to deploy a VPN Gateway to connect your on-premises network to GCP. You are using a non BGP-capable on-premises VPN device. You want to minimize downtime and operational overhead when your network grows. The device supports only IKEv2, and you want to follow Google-recommended practices.

What should you do?
A . – Create a Cloud VPN instance.
– Create a policy-based VPN tunnel per subnet.
– Configure the appropriate local and remote traffic selectors to match your local and remote networks.
– Create the appropriate static routes.
B . • Create a Cloud VPN instance.
– Create a policy-based VPN tunnel.
– Configure the appropriate local and remote traffic selectors to match your local and remote networks.
– Configure the appropriate static routes.

C . – Create a Cloud VPN instance.
– Create a route-based VPN tunnel.
– Configure the appropriate local and remote traffic selectors to match your local and remote networks.
– Configure the appropriate static routes.
D . – Create a Cloud VPN instance.
– Create a route-based VPN tunnel.
– Configure the appropriate local and remote traffic selectors to 0.0.0.0/0.
– Configure the appropriate static routes.

Answer: B

Explanation:

Reference: https://cloud.google.com/vpn/docs/concepts/choosing-networks-routing

Leave a Reply

Your email address will not be published.