Q: 9
Your company is working with a partner to provide a solution for a customer. Both your company and
the partner organization are using GCP. There are applications in the partner's network that need
access to some resources in your company's VPC. There is no CIDR overlap between the VPCs.
Which two solutions can you implement to achieve the desired results without compromising the
security? (Choose two.)
Options
Discussion
A/C, saw a similar question on a practice test. B can’t span orgs, and D isn’t really for this scenario.
Why not B? Shared VPC can’t go across organizations, right?
A/C tbh. Only VPC peering and Cloud VPN support cross-org connectivity without CIDR overlap. Shared VPC (B) doesn't work across orgs, and NAT or Interconnect aren't meant for this use case. Pretty sure that's what GCP docs say unless there's some weird edge policy.
C or D. I saw a similar question in a practice set, both work for secure connectivity.
Yeah I’d go with AC. VPC peering works if there’s no CIDR overlap, Cloud VPN is solid for encrypted tunnels.
B . Shared VPC should work since it's made for resource sharing across projects, maybe C is a trap.
A/C is right, Shared VPC (B) is a trap since it can't go across orgs.
A and C make sense here. VPC peering (A) works even if the VPCs are in different orgs and have no CIDR overlap. Cloud VPN (C) is also valid for secure cross-org communication. Shared VPC can't span organizations, so that's out. Let me know if I'm missing something!
A/C tbh, B looks tempting but Shared VPC doesn't cross org boundaries. D and E don't fit the secure cross-org VPC access use case.
A/C. Both let you connect separate org VPCs securely when there's no CIDR overlap.
Be respectful. No spam.
