Free Professional-Cloud-Architect Exam Braindumps

- (Exam Topic 1)
For this question, refer to the Mountkirk Games case study
Mountkirk Games needs to create a repeatable and configurable mechanism for deploying isolated application environments. Developers and testers can access each other's environments and resources, but they cannot access staging or production resources. The staging environment needs access to some services from production.
What should you do to isolate development environments from staging and production?

1. A. Create a project for development and test and another for staging and production.
2. B. Create a network for development and test and another for staging and production.
3. C. Create one subnetwork for development and another for staging and production.
4. D. Create one project for development, a second for staging and a third for production.

Correct Answer: D

- (Exam Topic 9)
For this question, refer to the Helicopter Racing League (HRL) case study. HRL is looking for a cost-effective approach for storing their race data such as telemetry. They want to keep all historical records, train models using only the previous season's data, and plan for data growth in terms of volume and information collected. You need to propose a data solution. Considering HRL business requirements and the goals expressed by CEO S. Hawke, what should you do?

1. A. Use Firestore for its scalable and flexible document-based databas
2. B. Use collections to aggregate race data by season and event.
3. C. Use Cloud Spanner for its scalability and ability to version schemas with zero downtim
4. D. Split race data using season as a primary key.
5. E. Use BigQuery for its scalability and ability to add columns to a schem
6. F. Partition race data based on season.
7. G. Use Cloud SQL for its ability to automatically manage storage increases and compatibility with MySQ
8. H. Use separate database instances for each season.

Correct Answer: C
Reference: https://cloud.google.com/bigquery/public-data

- (Exam Topic 5)
You are managing an application deployed on Cloud Run for Anthos, and you need to define a strategy for deploying new versions of the application. You want to evaluate the new code with a subset of production traffic to decide whether to proceed with the rollout. What should you do?

1. A. Deploy a new revision to Cloud Run with the new versio
2. B. Configure traffic percentage between revisions.
3. C. Deploy a new service to Cloud Run with the new versio
4. D. Add a Cloud Load Balancing instance in front of both services.
5. E. In the Google Cloud Console page for Cloud Run, set up continuous deployment using Cloud Build for the development branc
6. F. As part of the Cloud Build trigger, configure the substitution variable TRAFFIC_PERCENTAGE with the percentage of traffic you want directed to a new version.
7. G. In the Google Cloud Console, configure Traffic Director with a new Service that points to the newversion of the application on Cloud Ru
8. H. Configure Traffic Director to send a small percentage of traffic to the new version of the application.

Correct Answer: A
https://cloud.google.com/run/docs/rollouts-rollbacks-traffic-migration

- (Exam Topic 5)
Your organization has decided to restrict the use of external IP addresses on instances to only approved instances. You want to enforce this requirement across all of your Virtual Private Clouds (VPCs). What should you do?

1. A. Remove the default route on all VPC
2. B. Move all approved instances into a new subnet that has a defaultroute to an internet gateway.
3. C. Create a new VPC in custom mod
4. D. Create a new subnet for the approved instances, and set a default route to the internet gateway on this new subnet.
5. E. Implement a Cloud NAT solution to remove the need for external IP addresses entirely.
6. F. Set an Organization Policy with a constraint on constraints/compute.vmExternalIpAcces
7. G. List the approved instances in the allowedValues list.

Correct Answer: D
Reference: https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address https://cloud.google.com/compute/docs/ip-addresses/reserve-static-external-ip-address#disableexternalip
you might want to restrict external IP address so that only specific VM instances can use them. This option can help to prevent data exfiltration or maintain network isolation. Using an Organization Policy, you can restrict external IP addresses to specific VM instances with constraints to control use of external IP addresses for your VM instances within an organization or a project.

- (Exam Topic 5)
You are deploying an application on App Engine that needs to integrate with an on-premises database. For security purposes, your on-premises database must not be accessible through the public Internet. What should you do?

1. A. Deploy your application on App Engine standard environment and use App Engine firewall rules to limit access to the open on-premises database.
2. B. Deploy your application on App Engine standard environment and use Cloud VPN to limit access to the onpremises database.
3. C. Deploy your application on App Engine flexible environment and use App Engine firewall rules to limit access to the on-premises database.
4. D. Deploy your application on App Engine flexible environment and use Cloud VPN to limit access to the on-premises database.

Correct Answer: D
https://cloud.google.com/appengine/docs/flexible/python/using-third-party-databases