Exam4Training

What should you do?

You want to deploy a VPN Gateway to connect your on-premises network to GCP. You are using a non BGP-capable on-premises VPN device. You want to minimize downtime and operational overhead when your network grows. The device supports only IKEv2, and you want to follow Google-recommended practices.

What should you do?
A . • Create a Cloud VPN instance.
• Create a policy-based VPN tunnel per subnet.
• Configure the appropriate local and remote traffic selectors to match your local and remote networks.
• Create the appropriate static routes.
B . • Create a Cloud VPN instance.
• Create a policy-based VPN tunnel.
• Configure the appropriate local and remote traffic selectors to match your local and remote networks.
• Configure the appropriate static routes.

C . • Create a Cloud VPN instance.
• Create a route-based VPN tunnel.
• Configure the appropriate local and remote traffic selectors to match your local and remote networks.
• Configure the appropriate static routes.
D . • Create a Cloud VPN instance.
• Create a route-based VPN tunnel.
• Configure the appropriate local and remote traffic selectors to 0.0.0.0/0.
• Configure the appropriate static routes.

Answer: B

Explanation:

https://cloud.google.com/network-connectivity/docs/vpn/how-to/creating-static-vpns#creating_a_gateway_and_tunnel

Exit mobile version