Google Cloud Certified Associate Cloud Engineer Practice

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Google Cloud Certified Associate Cloud Engineer Exam with flashcards and multiple choice questions. Each question includes hints and explanations to help you study effectively. Get ready to pass your certification exam!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

How can you dynamically identify instances to apply firewall rules in Google Cloud?

  1. Network aliases

  2. Instance labels

  3. Network tags

  4. Firewall markers

The correct answer is: Network tags

Network aliases (A) are used for GCP internal IP addresses only and cannot be used for external IP addresses. Instance labels (B) are used to group resources for organization purposes and are not used for firewall rules. Firewall markers (D) are not a valid concept in Google Cloud and cannot be used to identify instances. With Google Cloud, you can dynamically identify instances to apply firewall rules by using network tags (C). Network tags allow you to attach labels to your instances and use those labels to specify firewall rules. This flexibility allows you to easily manage and update your firewall configurations without having to modify individual instances. Other options such as network aliases, instance labels, and firewall markers do not provide this same functionality and cannot be used to identify instances for firewall rules.

More Questions Like This