You are responsible for configuring firewall policies for your company in Google Cloud. Your security team has a strict set of requirements that must be met to configure firewall rules. • Always allow Secure Shell (SSH) from your corporate IP address. • Restrict SSH access from all other IP addresses. There are multiple projects and VPCs in your Google Cloud organization. You need to ensure that other VPC firewall rules cannot bypass the security team’s requirements. What should you do? A. 1. Configure a hierarchical firewall policy to the organization node to allow TCP port 22 for your corporate IP address with priority 0.2. Configure a hierarchical firewall policy to the organization node to deny TCP port 22 for all IP addresses with priority 1. B. 1. Configure a VPC firewall rule to allow TCP port 22 for your corporate IP address with priority 0.2. Configure a VPC firewall rule to deny TCP port 22 for all IP addresses with priority 1. C. 1. Configure a VPC firewall rule to allow TCP port 22 for your corporate IP address with priority 1.2. Configure a VPC firewall rule to deny TCP port 22 for all IP addresses with priority 0. D. 1. Configure a hierarchical firewall policy to the organization node to allow TCP port 22 for your corporate IP address with priority 12. Configure a hierarchical firewall policy to the organization node to deny TCP port 22 for all IP addresses with priority 0. Correct Answer: A This question is in Google Professional Cloud Network Engineer Exam For getting Google Professional Cloud Network Certificate
Please login or Register to submit your answer
