View Cloud-Architect Exam Questions

Q: 1

A microservice running on Cloud Run needs to connect to an external on-premises database via a Dedicated Interconnect connection. What is the required networking configuration for the Cloud Run service?

Options

Discussion

Anita Feb 24, 2026 9:40 am

D, not C

PreciseLead6118 Feb 14, 2026 3:50 pm

C. encountered exactly similar question in my exam and this is the setup needed for Cloud Run to reach on-prem over Interconnect.

RobinN Feb 6, 2026 7:27 am

Maybe D, but only if the on-prem DB had a public IP instead of being accessed over Interconnect using private IPs. Otherwise C feels right for this scenario.

Robin Y. Feb 13, 2026 3:05 am

D. saw a similar question pop up in some practice sets.

MayaM Feb 10, 2026 10:39 am

Option C is the right pick, not D. Assigning an external IP (option D) seems tempting but doesn't enable private connectivity to on-prem via Interconnect-that's what Serverless VPC Access does. I see folks mix that up a lot in practice.

HelpfulArchitect5127 Feb 8, 2026 12:06 pm

Probably C since Serverless VPC Access is needed for Cloud Run to hit internal IPs over Interconnect. Assigning an external IP (D) doesn't help with on-prem private resources, that's a common trap here. I think this lines up with how Google expects you to connect hybrid workloads, but happy for any corrections.

Daniel R. Feb 7, 2026 10:38 pm

C/D? D is tempting but only works for public IPs, not private over Interconnect. C is correct in this context.

Zoe Feb 11, 2026 11:58 am

Nah, D seems like a trap since assigning an external IP won't help Cloud Run reach on-prem private IPs over Interconnect. C is what you need for private connectivity. Anyone disagree?

Adam S. Feb 8, 2026 6:21 am

I'd say D makes sense here. If you assign an external IP to the Cloud Run service, it should be able to connect out to external resources like an on-prem database, assuming firewall rules allow it. I remember seeing a similar setup in a practice set, so I think D works, but open to other ideas if I'm missing a detail.

Rowan H. Feb 22, 2026 12:16 pm

C vs D? Not totally confident, but pretty sure C is right since Serverless VPC Access is usually needed for private connections back to on-prem. D doesn't really let Cloud Run reach internal IPs over Interconnect, if I'm remembering this right.

Be respectful. No spam.

Correct Answer:

Explanation

Cloud Run services, by default, run in a serverless environment isolated from your Virtual Private Cloud (VPC) network. To enable a Cloud Run service to send egress traffic to resources with internal IP addresses, such as an on-premises database connected via Cloud Interconnect, you must configure a Serverless VPC Access connector. This connector acts as a bridge, allowing the Cloud Run service to route traffic into the specified VPC. Since the Dedicated Interconnect links the on-premises network to this same VPC, the Cloud Run service can then reach the database through the connector and the interconnect.

Why Incorrect

A. Allow unauthenticated access on the Cloud Run service: This setting controls ingress (inbound) traffic to the service, determining who can invoke it. It has no effect on egress (outbound) connectivity from the service to a database.

B. Switch the Cloud Run service to run on a Compute Engine VM instead: This is an architectural change, not a configuration for the existing Cloud Run service. The question asks how to configure the Cloud Run service, not how to replace it.

D. Assign an external IP address to the Cloud Run service: An external IP address is for routing egress traffic to the public internet. The on-premises database is on a private network, accessible only via the private Dedicated Interconnect link, not the public internet.

References

1. Google Cloud Documentation, "Connecting to a VPC network": This document explicitly states: "To connect a Cloud Run service to resources in your VPC network, you need to set up Serverless VPC Access. You can send requests to your VPC network and receive the corresponding responses. This includes connecting to... on-premises resources connected to your VPC network using Cloud VPN or Cloud Interconnect."

Source: Google Cloud Documentation, Cloud Run > Networking > Connecting to a VPC network.

2. Google Cloud Documentation, "Serverless VPC Access overview": This page explains the core function: "Serverless VPC Access enables you to connect directly to your VPC network from serverless environments such as Cloud Run... By using Serverless VPC Access, you can access your Compute Engine VM instances, Cloud Memorystore instances, and any other resources with an internal IP address."

Source: Google Cloud Documentation, Serverless VPC Access > Overview.

3. Google Cloud Documentation, "Dedicated Interconnect overview": This document clarifies that Cloud Interconnect extends your on-premises network to your Google Cloud VPC network. "Dedicated Interconnect provides a direct physical connection between your on-premises network and Google's network." This confirms the on-premises database is reachable from within the VPC.

Source: Google Cloud Documentation, Cloud Interconnect > Dedicated Interconnect > Overview.

Q: 2

A large enterprise is migrating all its production workloads to Google Cloud. The security team insists that all outbound internet traffic from the VPC network be inspected by their proprietary, on-premises Intrusion Detection System (IDS) before leaving the Google network. What networking feature must be implemented?

Options

Discussion

AishaH Feb 8, 2026 9:06 pm

Nah, not seeing how A or D could work here since they don't actually force the traffic out through the on-prem IDS. Custom static route is the move since it overrides the default internet path. Pretty sure that's what Google wants here, unless I missed something.

Piya K. Feb 12, 2026 2:15 am

Option C not D. D looks tempting but it can't directly check URLs, while C ties Cloud Monitoring and automation together for alerts.

Ravi W. Feb 10, 2026 2:18 am

Custom static route

Adam Feb 14, 2026 11:16 am

Custom static route
Seen this kind of scenario in the official guide and practice sets. You need a custom static route to force all outbound traffic through on-prem systems for IDS inspection. If I missed something, open to hearing other takes.

Parker A. Feb 24, 2026 1:29 pm

I don't think it's D. C is better since Cloud Monitoring does actual uptime checks on the external URL, which is key for this scenario. D can't watch the endpoint directly, so that's a trap option.

Arjun M. Feb 7, 2026 11:20 pm

I don't think Cloud NAT or firewall policies alone would work here. Custom static route is needed to override the default 0.0.0.0/0 and push all egress through the VPN or Interconnect for on-prem IDS inspection. Pretty sure that's what they want, unless I missed a detail.

Cameron Z. Feb 13, 2026 7:39 pm

Custom Route with a Next Hop pointing to the on-premises IDS via VPN.

Ben V. Feb 19, 2026 6:08 am

Cloud NAT Gateway with custom firewall rules. Saw similar wording in some practice tests and thought this combo could cover outbound inspection requirements.

Cameron Feb 15, 2026 7:12 am

Custom static route

SharpReviewer365 Feb 10, 2026 5:07 am

Cloud VPN to a firewall VM in DMZ

Be respectful. No spam.

Correct Answer:

CUSTOM STATIC ROUTE

Explanation

To force all outbound internet traffic from a VPC to an on-premises system, the default route to the internet must be overridden. This is accomplished by creating a custom static route in the VPC. This new route will have a destination of 0.0.0.0/0 and a next hop pointing to the Cloud VPN tunnel or Cloud Interconnect attachment that connects to the on-premises network. By configuring a higher priority (a lower integer value) than the default internet route's priority of 1000, this custom route ensures all traffic destined for the internet is first sent to the on-premises network for inspection by the Intrusion Detection System (IDS).

References

1. Google Cloud Documentation, VPC, "Routes overview": This document explains the types of routes in a VPC network. Under the "Custom routes" section, it details static routes which are used to define custom traffic paths. It states, "You can create a custom static route to forward traffic to a VPN tunnel...". This directly supports using a custom route to direct traffic to an on-premises connection.

Source: Google Cloud, Virtual Private Cloud Documentation, "Routes overview", Section: "Custom routes".

2. Google Cloud Documentation, Cloud VPN, "Cloud VPN routing options": This guide describes how to configure routing for VPN tunnels. It explicitly mentions the scenario in the question: "To route traffic from Google Cloud to your peer network, you can create custom static routes in your VPC network... For the next hop of the route, specify the target VPN gateway of the Cloud VPN tunnel."

Source: Google Cloud, Cloud VPN Documentation, "Cloud VPN routing options", Section: "Static routing".

3. Google Cloud Architecture Center, "Build a hub-and-spoke network topology": This reference architecture describes centralizing network functions. The pattern "Centralized egress to on-premises" details the exact requirement. It states, "To implement this pattern, you advertise a default route (0.0.0.0/0) from your on-premises network to your VPC networks over the Cloud Interconnect or Cloud VPN connections." This advertisement creates a custom route in the VPC's route table that directs traffic on-premises.

Source: Google Cloud Architecture Center, "Build a hub-and-spoke network topology", Section: "Centralized egress to on-premises".

Q: 3

A Chief Security Officer (CSO) mandates that all network connections within the VPC network must be fully encrypted, even between internal services (VM-to-VM). The application is deployed on Compute Engine. What is the Google Cloud networking service that can enforce this?

Options

Discussion

Karan R. Feb 8, 2026 8:42 pm

Option B, not C. Just blocking non-HTTPS ports (C) doesn't force mTLS between VMs, which is actually needed here.

Emma C. Feb 10, 2026 2:23 pm

I don't think it's A here. The stack trace specifically calls out a manifest digest mismatch and unsigned entries, which are signature issues, not just missing dependencies. Option B targets the real issue-Java expects all JARs to be signed if any are. Some folks get tripped up by option A since missing files is a common deploy problem, but this error is classic for bad or absent signatures. Pretty sure B is right, but let me know if someone solved it differently.

Zoe L. Feb 17, 2026 1:55 pm

B. not A. This one is about the signature mismatch, so you need to sign the JAR files properly before redeploying.

Grace N. Feb 7, 2026 6:39 pm

B , but I'd double-check the official guide or do a hands-on lab with service mesh and mTLS just to be sure.

Ivy O. Feb 15, 2026 6:47 am

Its B in this case. Service mesh with mTLS is built specifically for encrypting all internal traffic between VMs, and it does it automatically at the network layer. Just firewalling or load balancing won't guarantee encryption inside the VPC. Pretty sure that's what the CSO's asking for but open to other logic.

Olivia G. Feb 13, 2026 1:33 pm

Yeah, I'd say B is most likely here.

Jason P. Feb 7, 2026 3:25 pm

B tbh, seen a similar question in exam reports and service mesh with mTLS is the key here.

SkepticalAuditor1183 Feb 16, 2026 11:34 am

Service mesh with mTLS is what actually encrypts all internal VM-to-VM traffic across the VPC. That's what B covers, not just firewalls or LB configs. Pretty sure B fits the CSO's ask, but correct me if I'm missing something.

Nora Feb 6, 2026 1:47 am

D , but B is probably what they're after since you need service mesh mTLS for full internal encryption. D trips people up since it sounds like HTTPS everywhere.

Nina J. Feb 12, 2026 8:15 pm

Be respectful. No spam.

Correct Answer:

Explanation

A service mesh, such as Anthos Service Mesh, is specifically designed to manage and secure communication between microservices (VM-to-VM traffic). Its core security feature is the ability to enforce mutual TLS (mTLS) for all traffic within the mesh. This is achieved by deploying a sidecar proxy alongside each application instance, which automatically encrypts and decrypts all incoming and outgoing traffic. This provides strong, identity-based authentication and encryption for all internal service communication, directly fulfilling the CSO's mandate without requiring changes to the application code. This aligns with a zero-trust security posture where internal traffic is not implicitly trusted.

Why Incorrect

A. Private Google Access allows VMs with only internal IP addresses to reach Google APIs and services; it does not manage or encrypt VM-to-VM traffic within the VPC.

C. VPC Firewall Rules operate at the network layer (Layer 4). While they can restrict traffic to a specific port like 443, they cannot inspect the payload to enforce that the traffic is actually encrypted with TLS.

D. A Global HTTP(S) Load Balancer manages north-south traffic (client-to-service). It does not enforce encryption for direct east-west (VM-to-VM) communication that bypasses the load balancer.

References

1. Anthos Service Mesh Documentation: "Anthos Service Mesh helps you secure your services by providing a way to manage authentication, authorization, and encryption... Anthos Service Mesh automatically encrypts traffic between services with mutual TLS (mTLS)."

Source: Google Cloud Documentation, "Anthos Service Mesh security", Section: "Encryption in transit".

2. BeyondProd Whitepaper: This Google whitepaper outlines the principles of zero-trust security, which includes encrypting all network traffic, even internal service-to-service communication. A service mesh is a key technology for implementing this. "All network traffic between services... must be encrypted and authenticated via mTLS."

Source: Google Cloud Whitepaper, "BeyondProd: A new approach to cloud-native security", Page 6, Section: "Transport Security".

3. VPC Firewall Rules Documentation: "VPC firewall rules let you allow or deny traffic to and from your virtual machine (VM) instances... Rules are defined at the VPC network level and are specific to the project and network." The documentation specifies that rules are based on protocol and port, not payload content.

Source: Google Cloud Documentation, "VPC firewall rules overview".

4. Private Google Access Documentation: "With Private Google Access, VM instances that do not have external IP addresses can reach the external IP addresses of Google APIs and services." This confirms its purpose is for accessing Google services, not for internal VM-to-VM security.

Source: Google Cloud Documentation, "Private Google Access overview".

Q: 4

GlobalTech requires a Disaster Recovery (DR) plan for their core e-commerce database (running on Cloud Spanner) with an aggressive Recovery Time Objective (RTO) and Recovery Point Objective (RPO) of under 5 minutes. The application must be available even if an entire region fails. Which Spanner configuration is required?

Options

Discussion

Riley Feb 23, 2026 8:26 pm

C . Monitoring and Logging are key here, plus Alerts for admin notifications and Error Reporting for surfacing app errors. Pretty sure this matches GCP's actual service names, unless they changed something.

Jamie M. Feb 24, 2026 3:16 am

Yeah I'm going with A for sure.

Ivy L. Feb 12, 2026 10:47 pm

A , only multi-region Spanner (option A) guarantees sync replication and instant failover to meet both RTO and RPO under 5 minutes. Pretty sure that's what the official guide says, check labs if unsure.

Noah X. Feb 17, 2026 12:58 am

D , async replication seems fast enough for <5min RTO/RPO but maybe I’m missing why it wouldn’t work. The multi-region setup is solid but async sounds right for DR to me-trap option?

Hannah M. Feb 14, 2026 11:15 am

I don’t think D fits, since async replication means you could lose data if the region fails. A

Karan H. Feb 7, 2026 9:04 am

Probably D for this one, since async replication usually covers DR use cases with low RTO/RPO if regions are fast enough. The official guide and practice exams have similar examples. I might be off here, anybody see different guidance?

Luna V. Feb 17, 2026 9:40 pm

I don’t think it's D, since async replication risks missing the sub-5 min RPO. A

Riley I. Feb 12, 2026 11:03 pm

Probably A, since only multi-region covers a full region outage and hits that fast RTO/RPO. The other configs either risk data loss or take too long to restore. Let me know if someone actually made D work for this.

Riley Feb 19, 2026 8:48 am

A makes sense here, since multi-region Spanner gives truly synchronous replication and automatic failover. That’s the only way to guarantee both sub-5 min RTO and RPO with no data loss, I think. Anyone see DR done another way for this?

Daniel Feb 12, 2026 8:10 am

D Async replication usually helps with DR but RPO could be a trap here, tempted to pick D not A.

Be respectful. No spam.

Correct Answer:

Explanation

A multi-region Cloud Spanner instance is designed for the highest availability and geographic resilience. It synchronously replicates data across multiple regions, ensuring that if an entire region becomes unavailable, the instance can automatically and transparently fail over to another region. This architecture provides a Recovery Point Objective (RPO) of zero, as all committed transactions are present in other regions. The Recovery Time Objective (RTO) is measured in seconds, as the failover is automatic. This configuration is the only one that meets the aggressive sub-5-minute RTO and RPO requirements while surviving a complete regional failure.

Why Incorrect

B. A single-region instance represents a single point of failure at the regional level. Daily backups result in an RPO of up to 24 hours, which drastically fails the requirement.

C. Read-only replicas cannot accept writes. In a regional failure, the application would lose write capability, failing to meet the RTO for a fully operational e-commerce database.

D. Multi-region Spanner achieves its high availability and zero RPO through synchronous replication using the Paxos consensus algorithm, not asynchronous replication, which would introduce potential data loss.

References

1. Google Cloud Documentation - Regional and multi-region configurations: "Multi-region configurations allow Spanner to replicate the database's data in multiple regions... In the event of a single region failure, a multi-region instance can transparently continue to serve reads and writes... RPO (Recovery Point Objective) is 0... RTO (Recovery Time Objective) is on the order of seconds." This directly supports the choice of a multi-region instance for near-zero RTO/RPO.

2. Google Cloud Documentation - Build high availability and disaster recovery readiness with Cloud Spanner: "For the lowest RTO and RPO, use a multi-region instance configuration. This configuration provides the highest availability (99.999%) and protection against regional failures." This document explicitly recommends the multi-region configuration for the scenario described in the question.

3. Corbett, J., Dean, J., Epstein, M., et al. (2012). Spanner: Google's Globally-Distributed Database. In Proceedings of the 10th USENIX Symposium on Operating Systems Design and Implementation (OSDI '12). Section 4, "Implementation," describes the use of the Paxos consensus algorithm across replicas in different datacenters to ensure data consistency and availability. This foundational paper explains the synchronous replication mechanism that enables the zero RPO characteristic of multi-region Spanner. (DOI: Not available for the original conference paper, but widely accessible via ACM/USENIX).

Q: 5

A security team needs to analyze network traffic patterns for auditing and anomaly detection. They require a complete record of all TCP/UDP traffic flowing through the VPC network, including source/destination IP, ports, and protocol. Which GCP feature should be enabled?

Options

Discussion

JackQ Feb 13, 2026 9:58 am

Option A but only because analysts need centralized raw data access. If it said edge analytics, I'd rethink.

Mia K. Feb 6, 2026 3:08 am

Option B is the best fit. VPC Flow Logs capture all traffic details for the entire VPC, including IPs, ports, and protocols, which is exactly what the security team needs. Pretty sure about this, unless I missed a subtle requirement?

ParkerH Feb 19, 2026 12:21 pm

B is the right pick here. VPC Flow Logs actually gives you those packet-level details like source/dest IP and ports for all VPC subnet traffic. The others won’t capture everything needed for auditing patterns like this. Pretty sure about B but open if anyone’s seen another use case.

Ben B. Feb 20, 2026 5:00 pm

Avery Q. Feb 15, 2026 6:17 pm

Cloud Audit Logs (C) just track API activity, not network flows. A is only for NAT traffic. For all TCP/UDP flows with IPs and ports, it has to be B-VPC Flow Logs. Anyone see a case where D fits better?

Jack H. Feb 14, 2026 1:27 pm

I remember a similar scenario from labs on a practice exam-B was correct. VPC Flow Logs capture all that detailed traffic info the security team needs. Not seeing how A or C could give full packet-level visibility.

Skyler E. Feb 21, 2026 4:10 pm

A tbh, B is a trap here since it doesn't address centralized analyst access with BigQuery like A does.

ThoughtfulReviewer93 Feb 8, 2026 7:18 am

A imo, but if the data is batch uploaded instead of streaming, C might make sense. Depends if IoT Core is required.

Be respectful. No spam.

Correct Answer:

Explanation

VPC Flow Logs is the designated Google Cloud feature for recording network traffic information. It captures a sample of network flows to and from VM instances within a VPC subnet. Each log entry contains details such as the source and destination IP addresses, source and destination ports, protocol, and the volume of data transferred. This data is crucial for use cases like network monitoring, security forensics, and real-time security analysis, directly addressing the security team's need to audit traffic patterns and detect anomalies.

Why Incorrect

A. Cloud NAT logging: This service only records information about connections that pass through a Cloud NAT gateway, not all traffic within the VPC.

C. Cloud Audit Logs: This service records administrative activities and API calls ("who did what, where, and when"), not the details of network traffic flows.

D. Cloud Monitoring metrics: This provides aggregated numerical data, such as total bytes in/out, but lacks the granular, per-flow details (IPs, ports) needed for this type of analysis.

References

1. Google Cloud Documentation, "VPC Flow Logs overview": "VPC Flow Logs records a sample of network flows sent from and received by VM instances... These logs can be used for network monitoring, forensics, real-time security analysis, and expense optimization." The documentation also lists the specific record format, which includes connection.srcip, connection.destip, connection.srcport, connection.destport, and connection.protocol.

Source: https://cloud.google.com/vpc/docs/using-flow-logs#logrecordformat

2. Google Cloud Documentation, "Cloud Audit Logs overview": "Google Cloud services write audit logs that record administrative activities and accesses within your Google Cloud resources. Cloud Audit Logs helps you answer the questions, 'who did what, where, and when?'"

Source: https://cloud.google.com/logging/docs/audit

3. Google Cloud Documentation, "Use Cloud NAT logging and monitoring": "Cloud NAT logging lets you log NAT connections and errors... Translation logs create a log entry for each successful NAT connection." This confirms its scope is limited to NAT-specific traffic.

Source: https://cloud.google.com/nat/docs/logging-and-monitoring

4. Google Cloud Architecture Center, "Security foundations guide - Logging and monitoring": "Enable VPC Flow Logs for subnets that contain critical workloads to record all network flows (ingress and egress) for those subnets. You can use VPC Flow Logs for network forensics and to provide a baseline for traffic patterns."

Source: https://cloud.google.com/architecture/security-foundations/networking-and-connectivity#loggingandmonitoring

Q: 6

----Altostrat Media Case Study---- Company Overview Altostrat is a prominent player in the media industry, with an extensive collection of audio and video content that comprises podcasts, interviews, news broadcasts, and documentaries. Their success in delivering premium content to a diverse audience requires a content management system that can keep pace with the dynamic media landscape. Solution Concept Altostrat seeks to modernize its content management and user engagement strategies using Google Cloud's generative AI. They want a platform that empowers customers with personalized recommendations, natural language interactions, and seamless self-service support. Simultaneously, they want to drive revenue growth through dynamic pricing, targeted marketing, and personalized product suggestions. The seamless integration of AI-powered tools into their existing Google Cloud environment will enable Altostrat to efficiently manage their vast media library, enhance user experiences, and unlock new revenue streams. Google Cloud’s generative AI will solidify their leadership in the media industry. Existing Technical Environment Altostrat's content management and delivery platform leverages GKE for scalability and high availability, essential for handling their vast media library. Their extensive media library, spanning various documents, audio and video formats, is stored in Cloud Storage. To gain valuable insights into user behavior, content consumption patterns, and audience demographics, Altostrat leverages BigQuery as their primary data warehouse. Additionally, they use Cloud Run functions for serverless execution of event-driven tasks such as video transcoding, metadata extraction, and personalized content recommendations. While Altostrat has made significant strides in cloud adoption, they also maintain some legacy on-premises systems for specific workflows like content ingestion and archival. These systems are slated for modernization and migration to Google Cloud in the near future. User management and authentication are currently handled through a combination of Google Identity and third-party identity providers. For monitoring and observability, Altostrat relies on a mix of native Google Cloud tools like Cloud Monitoring and open-source solutions like Prometheus, with alerts primarily delivered via email notifications Business Requirements Accelerate and enhance the reliability of operational workflows across all environments. [Google Cloud + On-premises] ● Simplify infrastructure management for rapid application deployment. ● Optimize cloud storage costs while maintaining high availability and scalability for media content. ● Enable natural language interaction with the platform with 24/7 user support. ● Automatically generate concise summaries of media content. ● Extract rich metadata from media assets using NLP and computer vision. ● Detect and filter inappropriate content. ● Analyze media content to identify trends and extract insights. ● Inform content strategy and decision-making with data. Technical Requirements ● Modernize CI/CD for containerized deployments with a centralized management platform. ● Secure, high-performance hybrid cloud connectivity for data ingestion. ● Provide scalable, performant kubernetes environments both on-premises and in the cloud. ● Optimize cloud storage costs for growing media volumes. ● Design AI-powered detection of harmful content. ● Ensure that AI systems are auditable and their decisions can be explained ● Leverage LLMs and conversational AI for personalized experiences and content virality. ● Develop advanced chatbots with natural language understanding to provide personalized assistance. ● Automated summarization for diverse media. Executive Statement At Altostrat, we are embracing the next frontier of artificial intelligence to revolutionize our content strategy. By harnessing the power of generative AI, we will create an unparalleled user experience by empowering our audience with intelligent tools for content discovery, personalized recommendations, and seamless interaction. Reliability and cost management are our top priorities. This strategic initiative will deepen engagement, foster customer loyalty, and unlock new revenue streams through targeted marketing and tailored content offerings. We see a future where AI-driven innovation is central to our business, leading to greater success for our company and delivering exceptional value to our customers. ------------------------------------------------------------ Query The Altostrat Media data team has noticed that the performance of their recommendation engine has significantly decreased over the last month, despite no changes to the model code. They suspect that the distribution of incoming user data has changed compared to the data used during training. What is this phenomenon called, and how should it be addressed?

Options

Discussion

Chris Feb 17, 2026 5:54 pm

Option A matches what I've seen in similar exam reports. Auto storage increase covers scaling without running out of space, and Stackdriver alerts help manage CPU and replication lag. Pretty sure it's A, but happy to hear other takes.

Daniel O. Feb 24, 2026 10:33 pm

C . The performance dip tied to user data changes is classic data drift (or skew). Vertex AI Model Monitoring actually tracks these shifts and can trigger retraining, so it fits the scenario best. Not infra or schema stuff, unless I'm missing some trick in the question wording. Anyone disagree?

PreciseCandidate921 Feb 12, 2026 5:08 am

C. since the drop in model performance with no code changes is typical data drift. Vertex AI Model Monitoring is built for this exact use case. I think that's what they're testing for here.

Drew N. Feb 6, 2026 6:22 pm

That drop in model performance when incoming data shifts from what the model was trained on is called data drift/skew. Option C matches because Vertex AI Model Monitoring is built for catching this exact problem and can even trigger retraining. I think it's clearly not D-infra scaling wouldn't fix the accuracy issue here. Agree?

AnitaM Feb 13, 2026 6:04 am

C . The question's about the distribution of user data shifting, which is classic data drift/skew, not an issue with infra (so not D). Vertex AI Model Monitoring is the right tool to spot and deal with this. Makes sense based on what I’ve seen, but let me know if there’s a catch I missed.

Drew P. Feb 9, 2026 5:06 am

Its C, had something like this in a mock. Data drift is the issue and Vertex AI monitoring handles it.

Chloe B. Feb 23, 2026 4:10 pm

B or D. Saw a similar question on a mock and picked D since scaling GKE might help if the issue was due to load, but maybe it's B if the model is outdated. Not totally sure here.

Priya D. Feb 14, 2026 6:45 pm

C vs D? D looks tempting if you only think about throughput or infra lag, but the question points at data distribution issues instead of scaling. I think C (data drift + Vertex AI monitoring) is what they're after, but not 100% sure.

AvaZ Feb 8, 2026 1:33 am

Performance drop with a change in data stats fits data drift/skew, so C. Vertex AI Model Monitoring is made for exactly this case. Pretty sure that's what they're asking here, but open to other takes if I missed something subtle.

Olivia V. Feb 16, 2026 11:54 pm

Seen this type of drift question in practice exams, pretty sure it's C. Official guide and Google docs cover Vertex AI Model Monitoring for this.

Be respectful. No spam.

Correct Answer:

Explanation

The phenomenon described, where the statistical properties of the incoming production data diverge from the data used to train the model, is known as data drift or training-serving skew. This divergence causes the model's performance to degrade because it is making predictions on data it wasn't trained to handle. The most effective way to address this on Google Cloud is by using Vertex AI Model Monitoring. This service is specifically designed to detect drift and skew by comparing the distribution of live traffic against the training data baseline. It can then be configured to send alerts or trigger an automated retraining pipeline to update the model with fresh data, ensuring its continued accuracy.

Why Incorrect

A. Schema Drift; update the Bigtable row keys to match the new data format.

Schema drift refers to changes in the data's structure (e.g., new columns), not its statistical distribution. The solution is also incorrect for this problem.

B. Model Garden; replace the current model with a pre-trained model from the library.

Model Garden is a repository of pre-trained models. It is not the name of the phenomenon, and replacing a custom model with a generic one is unlikely to solve a specific data drift issue.

D. GKE Scaling; increase the number of nodes in the cluster to handle the new data.

GKE scaling addresses infrastructure performance and throughput issues. It does not fix a model's declining predictive accuracy, which is an algorithmic problem caused by stale data.

References

1. Google Cloud Documentation, "Introduction to Vertex AI Model Monitoring": This document explicitly defines the problem. It states, "Model monitoring checks for skew and drift in the input data of your models... Training-serving skew occurs when the feature data distribution in production changes from the distribution in the training data." This directly confirms "Data Skew/Drift" as the correct term and Vertex AI Model Monitoring as the solution.

2. Google Cloud Documentation, "How model monitoring works": This page details the mechanism: "Vertex AI Model Monitoring works by comparing the data that your model receives to a baseline that is representative of the data your model was trained on... If the distributions differ significantly, Vertex AI can trigger an alert so that you can retrain your model." This supports the solution part of the correct answer.

3. Google Cloud Blog, "MLOps: Continuous delivery and automation pipelines in machine learning": In the "MLOps level 1: ML pipeline automation" section, the article describes the importance of a "model monitoring" step that analyzes model performance. It states, "This component is responsible for monitoring the quality of the model in production... The trigger can be a schedule or can be based on the model performance degradation... to execute the pipeline to produce a new version of the model." This validates the concept of triggering retraining in response to performance degradation caused by drift.

Q: 7

----Cymbal Retail Case Study---- Company Overview Cymbal is an online retailer experiencing significant growth. The retailer specializes in a large assortment of products spanning several retail sub-verticals, which makes managing their extensive product catalog a constant challenge. Solution Concept Cymbal wants to modernize its operations and enhance the customer experience in three core areas: ● Catalog and Content Enrichment: Cymbal wants to automate and improve the accuracy of their product catalog by utilizing gen AI to generate product attributes, descriptions, and images from supplier-provided information. This solution will streamline their catalog management, reduce manual effort and errors, and ensure information is consistent across all their sales channels. ● Conversational Commerce with Product Discovery: To enhance customer engagement and drive sales conversion, Cymbal wants to implement a Conversational Commerce solution. This solution will involve integrating AI- powered virtual agents into their website and mobile app to provide customers with a personalized and intuitive shopping experience through natural language conversations. These agents will utilize Google Cloud's Discovery AI to process user requests and retrieve the most relevant products based on each customer's needs and preferences, creating a more engaging and satisfying shopping journey. ● Technical Stack Modernization: To streamline operations and reduce costs around manual processes, data transfer, error handling and remediation, Cymbal wants to modernize their technical stack with cloud-based infrastructure, secure and efficient data handling, 3rd party integrations, and proactive monitoring and security. Existing Technical Environment Cymbal currently relies on the following environment: ● A mix of on-premises and cloud-based systems. ● A variety of databases, including MySQL, Microsoft SQL Server, Redis, and MongoDB, to store and manage its vast product catalog and customer data. ● Kubernetes clusters to run containerized applications. ● Legacy file-based integrations with on-premises systems, including SFTP file transfers, ETL batch processing. ● A custom-built web application which allows customers to browse the product catalog by querying the relational databases for names and categories of products. ● An IVR (Interactive Voice Response) system to handle initial customer calls and route them to the appropriate departments or agents. ● Call center agents who receive transferred calls from the IVR system and manually enter orders into the system when a customer can’t complete a transaction on their own. ● Various open source tools for monitoring such as Grafana, Nagios, and Elastic. The current technical environment has encountered significant challenges: manual processes are time-consuming and error-prone, data silos limit a unified view of the customer journey, and integrating new technologies is difficult. Business Requirements Cymbal has outlined these key business requirements for the gen AI solution: ● Automate Product Catalog Enrichment: Reduce manual effort, minimize errors, and ensure accuracy and consistency across the product catalog. ● Improve Product Discoverability: Enhance search relevance and enable customers to find products more efficiently. ● Increase Customer Engagement: Create a more interactive and personalized shopping experience to improve customer satisfaction and potentially reduce product returns. ● Drive Sales Conversion: Provide a more intuitive and helpful shopping experience to improve sales conversion rates and drive revenue growth. ● Reduce costs: Reduce call center staffing costs and data-center hosting costs. Technical Requirements ● Attribute Generation: Accurately derive relevant product attributes from various supplier data, including titles, descriptions, and images, ensuring the attributes align with the product category and Cymbal's existing catalog structure. ● Image Generation and Enhancement: Generate different product image variations from a base image (e.g., showcasing various colors). It should also support background changes, product color adjustments, and the addition of text overlays. ● Automate Product Discovery: Process customer requests expressed in natural language and return highly relevant product results. ● Scalability and Performance: The solution must handle Cymbal's extensive product catalog and accommodate their anticipated growth without compromising performance or user experience. ● Human-in-the-Loop (HITL) Review: Provide a user interface (UI) for associates to review and manage gen AI-generated content, allowing them to approve, reject, or modify suggestions before updating the product catalog. ● Data Security and Compliance: Ensure all customer data, including product information and interactions with virtual agents, are handled securely and comply with relevant industry regulations. Executive Statement By implementing Google Cloud's Generative AI for Digital Commerce solutions, Cymbal can transform its online retail operations to improve efficiency, enhance customer experience, and drive revenue growth. Key benefits for Cymbal include: ● Reduced operational costs through automation of catalog management tasks. ● Increased efficiency and speed in onboarding new products and updating existing ones. ● Improved accuracy and consistency of product information across all sales channels. ● A more engaging and personalized shopping experience that caters to modern customer preferences for conversational commerce. ● Enhanced product discoverability leading to higher conversion rates and increased sales. This strategic investment in generative AI will position Cymbal to remain competitive and thrive in the rapidly evolving landscape of online retail. ------------------------------------------------ Query Cymbal Retail currently runs some legacy inventory applications on-premises in their private data centers and some in Google Kubernetes Engine (GKE). They want to modernize their EKS (Amazon Elastic Kubernetes Service) clusters to ensure consistent policy management and security across all environments. Which solution is most appropriate? A) Migrate all EKS workloads to GKE Standard to eliminate multi-cloud overhead. B) Use Anthos to manage GKE, on-premises clusters, and EKS clusters through a single unified control plane. C) Deploy Model Garden containers directly onto EKS to handle Al inference locally. D) Use Bigtable replication to sync data between EKS and GKE.

Your Answer

Discussion

Sam R. Feb 17, 2026 1:04 pm

B
Saw an almost identical scenario in a practice set, and the answer was Anthos since it can centralize config and policy for both GKE and EKS. Pretty sure that's what they're after here, but open to other views if someone thinks A makes more sense.

Olivia R. Feb 7, 2026 10:56 pm

Yeah, B makes the most sense here.

Zoe F. Feb 15, 2026 12:59 am

B, not A. Anthos is meant for consistent policy/security across GKE, EKS, and on-prem clusters. Moving everything to GKE (A) is tempting but ignores the real-world hybrid setup most companies have. C and D don't really tackle unified management here.

Sam K. Feb 12, 2026 12:13 pm

I don't think A is what they're after here. The question wants consistent management across existing GKE, EKS, and on-prem-Anthos (B) is made for that, lets you set policies everywhere at once. A looks like a trap since it ignores their multi-cloud reality. Disagree?

OliviaS Feb 12, 2026 8:30 pm

Luke J. Feb 13, 2026 4:09 am

B (saw similar case on a practice exam, Anthos covers unified policy for all clusters)

Drew H. Feb 24, 2026 12:30 pm

Nah, I think B fits better for what they're asking. Anthos lets you manage EKS, GKE, and on-prem clusters all from one place, so policy consistency is actually possible. A looks like a trap since real migrations are rarely that clean.

PracticalOps9121 Feb 26, 2026 8:11 am

Had something like this in a mock and picked A. Moving all workloads to GKE Standard seemed like it would fix policy headaches since everything would be on one platform, but now I wonder if that's really the best for mixed environments. Anyone else think A could work?

Vikram J. Feb 26, 2026 3:49 am

B but honestly not 100 percent sure, Anthos covers multi-cloud management so fits the scenario best.

Olivia K. Feb 25, 2026 12:12 am

I was thinking A here. Migrating everything to GKE seems like it would clean up the multi-cloud mess and make it way easier to manage policy since there's only one platform to worry about. Maybe I'm missing something, but feels like a straightforward fix.

Be respectful. No spam.

Correct Answer:

Explanation

The core requirement is to establish consistent policy management and security across a multi-cloud and on-premises Kubernetes environment (GKE, EKS, on-premises). Anthos is Google Cloud's platform designed specifically for this purpose. It provides a unified control plane to manage Kubernetes clusters regardless of their location. Using Anthos, Cymbal can apply consistent configurations, policies (with Anthos Config Management), and security controls (with Anthos Service Mesh and Policy Controller) across their entire fleet of GKE, on-premises, and EKS clusters. Migrating workloads (A) is a drastic alternative to management, while options C and D address entirely different technical problems (AI inference and data replication, respectively) and do not solve the central challenge of unified cluster management.

References

1. Google Cloud Documentation, "Anthos technical overview": In the "What is Anthos?" section, it states, "Anthos is a managed application platform that extends Google Cloud services and engineering practices to your environments so you can modernize apps faster and establish operational consistency across them... You can run Anthos on Google Cloud, on-premises, at the edge, and on other public clouds such as AWS and Azure." This confirms its capability to manage multi-cloud environments.

2. Google Cloud Documentation, "Attach Amazon EKS clusters to Anthos": The introductory paragraph states, "Attaching your Amazon Elastic Kubernetes Service (EKS) clusters to Google Cloud enables you to manage and operate your EKS clusters together with your GKE and other Anthos clusters from the Google Cloud console." This directly addresses the scenario of managing EKS clusters.

3. Google Cloud Documentation, "Anthos Config Management overview": This document explains, "Anthos Config Management lets you deploy and monitor programmatic policies for your clusters on-premises, on Google Cloud, and in multi-cloud environments." This directly supports the requirement for "consistent policy management."

4. Google Cloud Documentation, "Anthos Service Mesh overview": This page describes how Anthos Service Mesh "lets you manage, observe, and secure services running on your clusters... without changing your application code." This supports the requirement for consistent security across environments.

Q: 8

The e-commerce application experiences a major traffic spike every Monday morning precisely at 9:00 AM, which often overwhelms the Compute Engine Managed Instance Group (MIG) before autoscaling can fully respond. How can the architect ensure the infrastructure is ready for the spike *proactively*?

Options

Discussion

Sofia P. Feb 14, 2026 4:23 pm

Makes sense to go with D here. Scheduler pre-warms the MIG before the spike, which proactive scaling needs. C is tempting but it's reactive, not proactive like the scenario wants. Anyone disagree?

Nina K. Feb 12, 2026 11:33 pm

Option B Activity Logs sound tempting but Stackdriver covers way more for monitoring and it's Google's native tool here.

HelpfulLearner3092 Feb 7, 2026 4:51 pm

Its A, since Activity Logs can show provisioning issues and Deployment Manager is the native tool.

Layla Feb 23, 2026 10:05 am

Option D. since C is a trap option here. Scheduler lets you scale up before autoscaling would kick in.

ParkerP Feb 7, 2026 11:36 am

D imo, this matches what I've seen in official practice tests for scheduled scaling. Scheduler lets you bump the MIG up before the traffic surge so VMs are warm and ready. If you want to dive deeper, check out labs on scheduled instance management in the Google documentation. If anyone thinks C makes more sense, let me know but pretty sure D is the go-to for predictable spikes.

FriendlyLearner7047 Feb 15, 2026 7:15 pm

Probably B since Deployment Manager and Stackdriver are both Google-native tools for provisioning and monitoring. Makes sense for GCP best practices.

Riley A. Feb 25, 2026 2:58 pm

Saw exactly similar question in my practice exam. D

Logan E. Feb 21, 2026 7:05 am

This is classic Google, always making you do workarounds for simple stuff. D

Noah Feb 16, 2026 3:48 am

D , since the scheduler lets you pre-scale before 9AM and avoids the reactive lag from autoscaling.

Casey H. Feb 23, 2026 6:36 am

Not C, D. This lines up with the official guide's section on scheduled/pre-warm scaling. Review GCP labs for hands-on practice.

Be respectful. No spam.

Correct Answer:

Explanation

The problem describes a predictable, recurring traffic spike that overwhelms the system before reactive autoscaling can respond. The key requirement is a proactive solution. Configuring a Cloud Scheduler job to call the Compute Engine API and increase the Managed Instance Group's (MIG) size 15 minutes before the known spike is a proactive, schedule-based scaling approach. This ensures that the necessary number of virtual machine instances are provisioned, initialized, and ready to serve traffic before the load increases, directly addressing the scenario's core issue.

Why Incorrect

A. Increasing the autoscaling cool-down period would make the autoscaler slower to respond to load changes, exacerbating the problem of being overwhelmed.

B. Switching to a GKE Cluster does not inherently solve the problem. GKE's autoscaling is also primarily reactive and would face the same delay in responding to a sudden spike.

C. Reducing the target CPU utilization is still a reactive measure. It would trigger scaling sooner once the spike begins, but it would not pre-provision instances before the spike occurs.

References

1. Google Cloud Documentation, "Autoscaling groups of instances": This document explicitly describes schedule-based autoscaling for predictable loads. It states, "If you have predictable workloads, you can configure schedule-based autoscaling to scale your MIGs in anticipation of traffic increases... You can create one or more scaling schedules to configure the minimum number of VM instances required in the MIG during scheduled periods." This directly supports the methodology in option D.

Source: Google Cloud Documentation, "Autoscaling groups of instances", Section: "Schedule-based autoscaling".

2. Google Cloud Documentation, "Scaling based on schedules": This guide provides a step-by-step tutorial on implementing the exact solution described in option D. It details how to create a scaling schedule that sets the min-num-replicas for a MIG at a specific time and day, using tools like gcloud or the API, which can be automated by Cloud Scheduler.

Source: Google Cloud Documentation, "Scaling based on schedules".

3. Google Cloud Documentation, "Autoscaler properties": This page explains the coolDownPeriodSec property. It defines the cool-down period as the time the autoscaler waits after a scaling activity before it can start another. Increasing this value would delay subsequent scaling actions, making option A incorrect.

Source: Google Cloud Documentation, "Autoscaler properties", Section: "coolDownPeriodSec".

Q: 9

A company is migrating a legacy application that relies on the NFS protocol for shared data access across multiple Linux servers. The data is accessed frequently and is mission-critical. The best Google Cloud storage service that provides a fully managed, scalable, and highly available equivalent to this on-premises file storage is: Cloud Filestore (Enterprise or High Scale) Cloud Bigtable Cloud Storage (Standard) Compute Engine Persistent Disk (Multi-Attach)

Your Answer

Discussion

MeeraH Feb 19, 2026 1:37 am

Why does Google keep putting Cloud Storage as a distractor in these? Cloud Filestore (Enterprise or High Scale)

Meera Q. Feb 16, 2026 1:19 pm

Cloud Filestore (Enterprise or High Scale)

Logan S. Feb 16, 2026 3:55 am

Yeah Cloud Filestore (Enterprise or High Scale) is the right pick.

Jason L. Feb 22, 2026 2:32 pm

Had something like this in a mock, Cloud Filestore (Enterprise or High Scale) is it.

MethodicalAuditor8694 Feb 6, 2026 5:54 pm

Makes sense with Cloud Filestore (Enterprise or High Scale) for NFS needs.

Ben V. Feb 25, 2026 1:39 am

Cloud Filestore (Enterprise or High Scale) is the best fit. NFS requirement rules out the others, pretty sure this matches the scenario.

Parker M. Feb 15, 2026 9:41 am

Yeah, Cloud Filestore (Enterprise or High Scale) is what you need for managed NFS in Google Cloud.

Riley F. Feb 14, 2026 12:12 pm

Which official guide covers NFS-based storage options in detail for Google Cloud migrations?

Nathan S. Feb 20, 2026 4:39 am

Nah, I don't think Cloud Storage (Standard) fits here. The key is NFS protocol support, which only Cloud Filestore (Enterprise or High Scale) actually provides as a managed service. Pretty sure that's what they'd expect.

Neha Z. Feb 13, 2026 10:16 am

Cloud Filestore (Enterprise or High Scale)

This is the only one that's fully managed and actually supports NFS directly, which is what legacy apps expect. Cloud Storage looks close but it's object storage, not NFS, so it won't work out of the box for this use case. Pretty sure that's the logic Google wants here but if anyone sees a catch let me know.

Be respectful. No spam.

Correct Answer:

CLOUD FILESTORE (ENTERPRISE OR HIGH SCALE)

Explanation

The question requires a fully managed, scalable, and highly available storage service that supports the NFS protocol for shared access, which is a direct replacement for a legacy on-premises file storage system. Cloud Filestore is Google Cloud's fully managed Network File System (NFS) service, designed specifically for this use case. It allows multiple Linux servers (Compute Engine VMs) to concurrently access a shared file system. The Enterprise and High Scale tiers provide the high availability and performance required for mission-critical applications. Other options are unsuitable: Cloud Storage is object storage, Bigtable is a NoSQL database, and Persistent Disk provides block storage, none of which natively serve the NFS protocol as a managed service.

References

1. Google Cloud Documentation, "Filestore overview". The first paragraph explicitly states, "Filestore is a fully managed, high-performance file storage service from Google Cloud for applications that require a file system interface and a shared file system for data. Filestore provides a familiar file system experience and is ideal for enterprise applications that depend on NFS."

Source: https://cloud.google.com/filestore/docs/overview

2. Google Cloud Architecture Center, "File storage on Compute Engine". This document compares storage options and recommends Filestore for specific scenarios. In the "Choosing a file storage solution" section, it states, "For workloads that require a Network File System (NFS) protocol and shared file access, Filestore is an effective storage option."

Source: https://cloud.google.com/architecture/file-storage-on-compute-engine

3. Google Cloud Documentation, "Cloud Storage products". This page provides a comparison table of Google's storage services. It categorizes Filestore as "File storage" with the primary access method being "NFSv3" and the use case as "Managed network file share." This clearly distinguishes it from Persistent Disk (Block storage), Cloud Storage (Object storage), and Cloud Bigtable (NoSQL database).

Source: https://cloud.google.com/storage/docs/products

Q: 10

An application needs a key-value store with eventual consistency that can span multiple regions and is primarily used to cache or store user preferences that change infrequently. Which database should be selected for maximum availability and global distribution with eventual consistency?

Options

Discussion

JordanD Feb 8, 2026 7:56 pm

D every time for this. Firestore Native handles multi-region and eventual consistency well, fits key-value user prefs perfectly.

Ben Y. Feb 19, 2026 3:10 pm

D . Firestore in Native Mode gives you global scaling and eventual consistency, which is exactly what you want for infrequent user preference changes across regions. Cloud SQL and Bigtable aren't really designed for this pattern. Open to other takes if I missed something.

Aisha C. Feb 9, 2026 12:59 am

D tbh, fits key-value and eventual consistency across regions best for this scenario.

Rowan L. Feb 6, 2026 2:59 pm

I don’t think it’s B. D makes more sense for eventual consistency with multi-region and key-value, but not 100 percent certain.

NoraR Feb 8, 2026 9:47 am

Key detail is that Firestore Native Mode (D) supports multi-region and true eventual consistency, while Bigtable and Spanner lean toward other use cases. Pretty sure D unless you need strong consistency instead.

Skyler Y. Feb 19, 2026 1:00 pm

Probably D. Firestore Native Mode ticks all the boxes: global reach, eventual consistency, and fits a key-value user preferences use case. Official guides and practice exams stress this distinction a lot, so I think D is right unless there's something subtle in the scenario I missed. Anyone disagree?

SkepticalAnalyst2685 Feb 23, 2026 10:37 pm

D fits best here since Firestore Native Mode handles global distribution with eventual consistency, and it's ideal for storing key-value user preferences. Spanner is usually overkill unless strong consistency is required. Think D is right, but always happy to hear counterpoints.

Jordan N. Feb 8, 2026 2:09 am

D tbh, not C. Spanner trips folks up but it's really for strong consistency, while Firestore's eventual consistency wins here.

Meera M. Feb 8, 2026 12:08 am

D imo. Firestore in Native Mode is designed for global scale and offers eventual consistency, which fits the question perfectly for key-value storage with max availability. Spanner (C) is stronger on global strong consistency but is more relational and probably overkill for just caching user prefs. Pretty sure D nails all the requirements here, open to arguments if someone sees Bigtable working better.

Adam I. Feb 9, 2026 10:19 pm

Maybe C, I remember a similar question on a practice exam picking Spanner for global availability and consistency.

Be respectful. No spam.

Correct Answer:

Explanation

Cloud Firestore in Native Mode is a NoSQL document database built for global, scalable applications. It stores data in documents, which are collections of key-value pairs, fitting the requirement. It can be deployed in a multi-region configuration, providing maximum availability and global distribution by replicating data across multiple geographic locations. This replication is asynchronous, resulting in the eventual consistency model specified in the question. Its primary use cases include storing user profiles and preferences, making it the most suitable choice for this scenario.

Why Incorrect

A. Cloud SQL: This is a regional, relational (SQL) database that provides strong consistency (ACID compliance), which contradicts the key-value, multi-region, and eventual consistency requirements.

B. Cloud Bigtable: While it can be multi-regional with eventual consistency, it is a wide-column store optimized for very large-scale, high-throughput analytical and operational workloads, making it overly complex and not cost-effective for infrequently changing user preferences.

C. Cloud Spanner: This is a globally distributed relational database, but its key feature is providing strong external consistency across regions, which is the opposite of the eventual consistency required by the application.

References

1. Cloud Firestore Locations: Google Cloud Documentation, "Cloud Firestore locations". It states, "A multi-region location is a general geographical area... Multi-region locations can withstand the loss of an entire region and maintain availability... Writes to Cloud Firestore are committed to one replica, then asynchronously replicated to other replicas. This results in eventual consistency when reading from replicas." This directly supports the multi-region, high availability, and eventual consistency aspects.

2. Choosing a Database: Firestore: Google Cloud Documentation, "Choose a database: Firestore". It highlights that Firestore is ideal for "storing, syncing, and querying user data for mobile and web apps," and its data model consists of "documents that contain key-value pairs," aligning perfectly with the use case.

3. Cloud Bigtable Overview: Google Cloud Documentation, "Cloud Bigtable overview". It describes Bigtable as ideal for "large analytical and operational workloads," such as "IoT, ad tech, and personalization," which are different from the specified use case of simple user preferences.

4. Cloud Spanner Consistency: Google Cloud Documentation, "Spanner: Google's Globally-Distributed Database". Section 3, "Implementation," details its use of Paxos and 2PC to achieve external consistency for distributed transactions, which is not what the question asks for.

5. Cloud SQL Features: Google Cloud Documentation, "Cloud SQL features". This page confirms that Cloud SQL provides "fully managed relational databases" and that instances are regional, with cross-region read replicas for disaster recovery, not for multi-region writes.

Question 1 of 20 · Page 1 / 2

Premium Access Includes

✓ Quiz Simulator
✓ Exam Mode
✓ Progress Tracking
✓ Question Saving
✓ Flash Cards
✓ Drag & Drops
✓ 3 Months Access
✓ PDF Downloads

Get Premium Access

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

📖 About this Domain

🎓 What You Will Learn

🛠️ Skills You Will Build

💡 Top Tips to Prepare

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE