What should your team do?
A customer has an analytics workload running on Compute Engine that should have limited internet access.
Your team created an egress firewall rule to deny (priority 1000) all traffic to the internet.
The Compute Engine instances now need to reach out to the public repository to get security updates.
What should your team do?
A . Create an egress firewall rule to allow traffic to the CIDR range of the repository with a priority greater than 1000.
B . Create an egress firewall rule to allow traffic to the CIDR range of the repository with a priority less than 1000.
C . Create an egress firewall rule to allow traffic to the hostname of the repository with a priority greater than 1000.
D . Create an egress firewall rule to allow traffic to the hostname of the repository with a priority less than 1000.
Answer: B
Explanation:
https://cloud.google.com/vpc/docs/firewalls#priority_order_for_firewall_rules
Latest Professional Cloud Security Engineer Dumps Valid Version with 93 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund