GCE Practice Exam #3

What is the purpose of Cloud Monitoring's uptime check?

Verify application availability via HTTP/S requests.

What is the purpose of a VPC flow log?

Track network traffic metadata (source/destination IPs).

To capture and log network traffic information for analysis.

What is the primary use of Cloud Firestore?

NoSQL document storage with real-time sync.

Which service is best for real-time analytics on streaming data?

Cloud Dataflow allows for processing and analyzing streaming data in real time with a serverless architecture.

What is the purpose of a firewall rule in Google Cloud?

To control incoming and outgoing traffic to resources in a VPC.

Which storage option is ideal for IoT event data with high write throughput?

Cloud Bigtable provides a scalable storage solution optimized for high write throughput and is well-suited for IoT event data.

How do you list all running VM instances in a project?

You use the gcloud compute instances list command to display all running virtual machine instances in a specific project.

Which command lists all IAM roles granted to a user in a project?

You use the gcloud iam roles list command to display all IAM roles assigned to a specific user within a project.

Which feature allows VMs to access metadata without public IPs?

Metadata server allows VMs to access instance metadata without requiring public IP addresses, ensuring secure access to configuration and metadata information.

Which feature allows splitting traffic between Cloud Run revisions?

Traffic splitting feature allows you to route a percentage of requests to different revisions of a Cloud Run service.

What is the purpose of VPC Service Controls?

Limit data exfiltration via API perimeters.

Which service is best for running a stateful MySQL database with automated backups?

Cloud SQL is the best service for running a stateful MySQL database with automated backups, providing managed database solutions.

How do you troubleshoot a GKE Pod stuck in 'Pending' status?

Check node availability and resource limits or inspect Pod events for errors.

Which command creates a static global IP address?

The command to create a static global IP address in Google Cloud is gcloud compute addresses create --global. This reserves a static IP for use with Google Cloud services.

What is the purpose of Cloud Monitoring's uptime check?

Verify application availability via HTTP/TCP.

Which command reserves a static internal IP address?

gcloud compute addresses create --region=us-central1

What is the purpose of a custom mode VPC?

To create a virtual private cloud with manual subnet configurations and routing.

What is the purpose of OS Login?

To manage SSH access to instances using IAM roles and permissions.

How do you enable Dataflow's Shuffle Service?

Set --enable_shuffle_service in pipeline options.

How do you enable SSH access to a VM instance without public IP?

Configure IAP (Identity-Aware Proxy) for secure access.

Which service is used to schedule recurring data imports into BigQuery?

BigQuery Data Transfer Service

Which storage class is optimized for data accessed once a month?

Nearline

What is the primary use of Cloud Pub/Sub?

A messaging service for event-driven systems that allows applications to communicate asynchronously.

How do you enable the Kubernetes Engine API for a project?

By navigating to the Google Cloud Console and activating the API from the API library.

or

Run gcloud services enable container.googleapis.com.

How do you deploy a containerized app without managing infrastructure?

By using a serverless platform like Google Cloud Run.

How do you enable Dataflow's streaming engine?

Set --enable_streaming_engine in job parameters.

What is the purpose of a custom machine type in Compute Engine?

Tailor CPU and memory to workload needs.

Which service is used to migrate on-premises databases to Cloud SQL?

Database Migration Service (DMS).

How do you reduce latency for static content globally?

Cloud CDN

What is the purpose of the roles/storage.objectAdmin role?

Manage objects within a bucket.

How do you enforce MFA for all project users?

Configure Cloud Identity.

What is the purpose of a service account key rotation?

To Enhance security by limiting key lifespan.

What is the first step to troubleshoot a VM instance that cannot connect to the internet?

Check firewall rules.

Which service is used to orchestrate Apache Airflow workflows?

Cloud Composer

Which feature allows cross-project resource monitoring in Cloud Monitoring?

Workspaces.

How do you enable Private Google Access for a subnet?

Modify subnet settings to allow private API access.

Which service is best for running stateful applications on GKE?

PersistentVolumes (PVs).

Which feature ensures VMs are distributed across multiple zones for high availability?

Regional Managed Instance Groups (MIGs).

What is the purpose of a billing account in Google Cloud?

Link projects to payment methods.

Which command deploys a Cloud Function triggered by Cloud Storage events?

gcloud functions deploy --trigger-bucket

What is the purpose of the roles/iam.serviceAccountUser role?

Allow impersonation of service accounts.

What is the purpose of the gcloud compute instances set-service-account command?

Attach a service account to a VM instance.

Which IAM role allows viewing project resources but not modifying them?

roles/viewer

How do you revoke temporary service account credentials?

Use gcloud iam service-accounts keys disable.

How do you enforce TLS for traffic to a Cloud Storage bucket?

Set a bucket policy to require HTTPS.

Which service is used to migrate VMs from AWS to Google Cloud?

Migrate for Compute Engine

What is the purpose of gcloud config configurations?

Manage multiple CLI environments.

Switches between projects/accounts.

Which feature allows splitting traffic between Cloud Run revisions?

Traffic splitting

Which command creates a snapshot of a Persistent Disk?

gcloud compute disks snapshot

What is the purpose of a Cloud Armor security policy?

Block DDoS attacks and malicious traffic.