Q: 19
Your company has a single Virtual Private Cloud (VPC) network deployed in Google Cloud with access
from on-premises locations using Cloud Interconnect connections. Your company must be able to
send traffic to Cloud Storage only through the Interconnect links while accessing other Google APIs
and services over the public internet. What should you do?
Options
Discussion
Option B, Saw similar questions in practice tests, official docs mention Private Service Connect is the way for isolating specific Google service traffic like Cloud Storage through Interconnect.
Maybe D. Private Google Access with private.googleapis.com for Cloud Storage seems like it would fit the requirement, since it routes that traffic internally over Interconnect. The only catch is that restricted.googleapis.com usually covers all APIs, but the question feels close to D's logic. Could be missing a detail-thoughts?
B tbh
Likely B. Private Service Connect lets you route just Cloud Storage over your Interconnect, leaving everything else on public internet, exactly as the scenario says. D would lock down all Google APIs, which isn't asked here. Pretty sure about B unless I missed some edge case-let me know if you see it differently.
Its D
Probably B here, but does "must be able to send traffic" mean it's a hard compliance requirement for Cloud Storage only? If they needed private access for all Google APIs, that would point elsewhere.
Be respectful. No spam.
