更新於 2024/10/22閱讀時間約 178 分鐘

Google Certified Professional Cloud Architect 證照考古題大全

谷歌雲端架構師證照題庫彙整 20241022


Google Cloud Platform(GCP 谷歌雲)全系列考古題,2024年最新題庫,持續更新,全網最完整。GCP 證照含金量高,自我進修、跨足雲端產業必備近期版本更新,隨時追蹤最新趨勢變化。

QUESTION 281

You are developing an application using different microservices that should remain internal to the cluster. You wantto be able to configure each microservice with a specific number of replicas. You also want to be able to address a specific microservice from any other microservice in a uniform way, regardless of the number of replicas the microservice scales to. You need to implement this solution on Google Kubernetes Engine. What should you do?

 

A.       Deploy each microservice as a Deployment. Expose the Deployment in the cluster using a Service, and use theService DNS name to address it from other microservices within the cluster.

B.       Deploy each microservice as a Deployment. Expose the Deployment in the cluster using an Ingress, and usethe Ingress IP address to address the Deployment from other microservices within the cluster.

C.      Deploy each microservice as a Pod. Expose the Pod in the cluster using a Service, and use the Service DNSname to address the microservice from other microservices within the cluster.

D.      Deploy each microservice as a Pod. Expose the Pod in the cluster using an Ingress, and use the IngressIP address name to address the Pod from other microservices within the cluster.

 

Correct Answer: A

Section: (none)

 

QUESTION 282

Your company has a networking team and a development team. The development team runs applications on Compute Engine instances that contain sensitive data. The development team requires administrative permissions for Compute Engine. Your company requires all network resources to be managed by the networking team. The development team does not want the networking team to have access to the sensitive data on the instances. Whatshould you do?

 

A.       1. Create a project with a standalone VPC and assign the Network Admin role to the networking team.

2.   Create a second project with a standalone VPC and assign the Compute Admin role to thedevelopment team.

3.   Use Cloud VPN to join the two VPCs.

B.       1. Create a project with a standalone Virtual Private Cloud (VPC), assign the Network Admin role to thenetworking team, and assign the Compute Admin role to the development team.

C.      1. Create a project with a Shared VPC and assign the Network Admin role to the networking team.

2. Create a second project without a VPC, configure it as a Shared VPC service project, and assign the ComputeAdmin role to the development team.

D.      1. Create a project with a standalone VPC and assign the Network Admin role to the networking team.

2.   Create a second project with a standalone VPC and assign the Compute Admin role to thedevelopment team.

3.   Use VPC Peering to join the two VPCs.

 

Correct Answer: C

Section: (none)


QUESTION 283

Your company wants you to build a highly reliable web application with a few public APIs as the backend. You don'texpect a lot of user traffic, but traffic could spike occasionally. You want to leverage Cloud Load Balancing, and thesolution must be cost-effective for users. What should you do?

 

A.       Store static content such as HTML and images in Cloud CDN. Host the APIs on App Engine and store theuser data in Cloud SQL.

B.       Store static content such as HTML and images in a Cloud Storage bucket. Host the APIs on a zonal GoogleKubernetes Engine cluster with worker nodes in multiple zones, and save the user data in Cloud Spanner.

C.      Store static content such as HTML and images in Cloud CDN. Use Cloud Run to host the APIs and savethe user data in Cloud SQL.

D.      Store static content such as HTML and images in a Cloud Storage bucket. Use Cloud Functions to host theAPIs and save the user data in Firestore.

 

Correct Answer: B

Section: (none)

 

QUESTION 284

Your company sends all Google Cloud logs to Cloud Logging. Your security team wants to monitor the logs. You want to ensure that the security team can react quickly if an anomaly such as an unwanted firewall change or server breach is detected. You want to follow Google-recommended practices. What should you do?

 

A.       Schedule a cron job with Cloud Scheduler. The scheduled job queries the logs every minute for therelevant events.

B.       Export logs to BigQuery, and trigger a query in BigQuery to process the log data for the relevant events.

C.      Export logs to a Pub/Sub topic, and trigger Cloud Function with the relevant log events.

D.      Export logs to a Cloud Storage bucket, and trigger Cloud Run with the relevant log events.

 

Correct Answer: C

Section: (none)

 

QUESTION 285

You have deployed several instances on Compute Engine. As a security requirement, instances cannot have a public IP address. There is no VPN connection between Google Cloud and your office, and you need to connect viaSSH into a specific machine without violating the security requirements. What should you do?

 

A.       Configure Cloud NAT on the subnet where the instance is hosted. Create an SSH connection to the CloudNAT IP address to reach the instance.

B.       Add all instances to an unmanaged instance group. Configure TCP Proxy Load Balancing with theinstance group as a backend. Connect to the instance using the TCP Proxy IP.

C.      Configure Identity-Aware Proxy (IAP) for the instance and ensure that you have the role of IAP-secured TunnelUser. Use the gcloud command line tool to ssh into the instance.

D.      Create a bastion host in the network to SSH into the bastion host from your office location. From the bastionhost, SSH into the desired instance.

 

Correct Answer: D

Section: (none)

 

小豬科技讓雲端變得簡單,了解更多 讓您的業務更上一層樓!


QUESTION 286

Your company is using Google Cloud. You have two folders under the Organization: Finance and Shopping. The members of the development team are in a Google Group. The development team group has been assigned the Project Owner role on the Organization. You want to prevent the development team from creating resources inprojects in the Finance folder. What should you do?

 

A.       Assign the development team group the Project Viewer role on the Finance folder, and assign thedevelopment team group the Project Owner role on the Shopping folder.

B.       Assign the development team group only the Project Viewer role on the Finance folder.


C.      Assign the development team group the Project Owner role on the Shopping folder, and remove thedevelopment team group Project Owner role from the Organization.

D.      Assign the development team group only the Project Owner role on the Shopping folder.

 

Correct Answer: C

Section: (none)

 

QUESTION 287

You are developing your microservices application on Google Kubernetes Engine. During testing, you want to validate the behavior of your application in case a specific microservice should suddenly crash. What should youdo?

 

A.       Add a taint to one of the nodes of the Kubernetes cluster. For the specific microservice, configure a pod anti-affinity label that has the name of the tainted node as a value.

B.       Use Istio's fault injection on the particular microservice whose faulty behavior you want to simulate.

C.      Destroy one of the nodes of the Kubernetes cluster to observe the behavior.

D.      Configure Istio's traffic management features to steer the traffic away from a crashing microservice.

 

Correct Answer: D

Section: (none)

 

QUESTION 288

Your company is developing a new application that will allow globally distributed users to upload pictures and share them with other selected users. The application will support millions of concurrent users. You want to allowdevelopers to focus on just building code without having to create and maintain the underlying infrastructure. Whichservice should you use to deploy the application?

 

A.       App Engine

B.       Cloud Endpoints

C.      Compute Engine

D.      Google Kubernetes Engine

 

Correct Answer: A

Section: (none)

 

QUESTION 289

Your company provides a recommendation engine for retail customers. You are providing retail customers with an API where they can submit a user ID and the API returns a list of recommendations for that user. You are responsible for the API lifecycle and want to ensure stability for your customers in case the API makes backward-incompatible changes. You want to follow Google-recommended practices. What should you do?

 

A.       Create a distribution list of all customers to inform them of an upcoming backward-incompatible change at leastone month before replacing the old API with the new API.

B.       Create an automated process to generate API documentation, and update the public API documentation as partof the CI/CD process when deploying an update to the API.

C.      Use a versioning strategy for the APIs that increases the version number on every backward-incompatible change.

D.      Use a versioning strategy for the APIs that adds the suffix "DEPRECATED" to the current API version numberon every backward-incompatible change. Use the current version number for the new API.

 

Correct Answer: C

Section: (none)

 

QUESTION 290

Your company has developed a monolithic, 3-tier application to allow external users to upload and share files. Thesolution cannot be easily enhanced and lacks reliability. The development team would like to re- architect the application to adopt microservices and a fully managed service approach, but they need to convince their leadership that the effort is worthwhile. Which advantage(s) should they highlight to leadership?


A.       The new approach will be significantly less costly, make it easier to manage the underlyinginfrastructure, and automatically manage the CI/CD pipelines.

B.       The monolithic solution can be converted to a container with Docker. The generated container can then bedeployed into a Kubernetes cluster.

C.      The new approach will make it easier to decouple infrastructure from application, develop and release newfeatures, manage the underlying infrastructure, manage CI/CD pipelines and perform A/B testing, and scalethe solution if necessary.

D.      The process can be automated with Migrate for Compute Engine.

 

Correct Answer: C

Section: (none)

 

在雲端時代站穩腳步,現在就 註冊 小豬科技,開始您的旅程!


QUESTION 291

Your team is developing a web application that will be deployed on Google Kubernetes Engine (GKE). Your CTOexpects a successful launch and you need to ensure your application can handle the expected load of tens of thousands of users. You want to test the current deployment to ensure the latency of your application stays below acertain threshold. What should you do?

 

A.       Use a load testing tool to simulate the expected number of concurrent users and total requests to yourapplication, and inspect the results.

B.       Enable autoscaling on the GKE cluster and enable horizontal pod autoscaling on your applicationdeployments. Send curl requests to your application, and validate if the auto scaling works.

C.      Replicate the application over multiple GKE clusters in every Google Cloud region. Configure a globalHTTP(S) load balancer to expose the different clusters over a single global IP address.

D.      Use Cloud Debugger in the development environment to understand the latency between the differentmicroservices.

 

Correct Answer: C

Section: (none)

 

QUESTION 292

Your company has a Kubernetes application that pulls messages from Pub/Sub and stores them in Filestore. Because the application is simple, it was deployed as a single pod. The infrastructure team has analyzed Pub/Sub metrics and discovered that the application cannot process the messages in real time. Most of them wait forminutes before being processed. You need to scale the elaboration process that is I/ O-intensive. What should youdo?

 

A.       Use kubectl autoscale deployment APP_NAME --max 6 --min 2 --cpu-percent 50 to configureKubernetes autoscaling deployment.

B.       Configure a Kubernetes autoscaling deployment based on the subscription/ metric.push_request_latencies

C.      Use the --enable-autoscaling flag when you create the Kubernetes cluster.

D.      Configure a Kubernetes autoscaling deployment based on the subscription/ metric.num_undelivered_messages

 

Correct Answer: C

Section: (none)

 

QUESTION 293

Your company is developing a web-based application. You need to make sure that production deployments arelinked to source code commits and are fully auditable. What should you do?

 

A.       Make sure a developer is tagging the code commit with the date and time of commit.

B.       Make sure a developer is adding a comment to the commit that links to the deployment.

C.      Make the container tag match the source code commit hash.

D.      Make sure the developer is tagging the commits with latest.

 

Correct Answer: A

Section: (none)


QUESTION 294

An application development team has come to you for advice. They are planning to write and deploy an HTTP(S) API using Go 1.12. The API will have a very unpredictable workload and must remain reliable during peaksin traffic. They want to minimize operational overhead for this application. Which approach should yourecommend?

 

A.       Develop the application with containers, and deploy to Google Kubernetes Engine.

B.       Develop the application for App Engine standard environment.

C.      Use a Managed Instance Group when deploying to Compute Engine.

D.      Develop the application for App Engine flexible environment, using a custom runtime.

 

Correct Answer: C

Section: (none)

 

QUESTION 295

Your company is designing its data lake on Google Cloud and wants to develop different ingestion pipelines to collect unstructured data from different sources. After the data is stored in Google Cloud, it will be processed in several data pipelines to build a recommendation engine for end users on the website. The structure of the data retrieved from the source systems can change at any time. The data must be stored exactly as it was retrieved for reprocessing purposes in case the data structure is incompatible with the current processing pipelines. You need to design an architecture to support the use case after you retrieve the data. What should you do?

 

A.       Send the data through the processing pipeline, and then store the processed data in a BigQuery table for reprocessing.

B.       Store the data in a BigQuery table. Design the processing pipelines to retrieve the data from the table.

C.      Send the data through the processing pipeline, and then store the processed data in a Cloud Storage bucketfor reprocessing.

D.      Store the data in a Cloud Storage bucket. Design the processing pipelines to retrieve the data from the bucket.

 

Correct Answer: D

Section: (none)

 

小豬科技的專家隨時為您解答,點擊這裡 立即聯絡。


QUESTION 296

You are responsible for the Google Cloud environment in your company. Multiple departments need access to their own projects, and the members within each department will have the same project responsibilities. You want to structure your Google Cloud environment for minimal maintenance and maximum overview of IAM permissions as each department's projects start and end. You want to follow Google-recommended practices.

What should you do?

 

A.       Grant all department members the required IAM permissions for their respective projects.

B.       Create a Google Group per department and add all department members to their respective groups. Create a folder per department and grant the respective group the required IAM permissions at the folder level.Add the projects under the respective folders.

C.      Create a folder per department and grant the respective members of the department the required IAMpermissions at the folder level. Structure all projects for each department under the respective folders.

D.      Create a Google Group per department and add all department members to their respective groups. Granteach group the required IAM permissions for their respective projects.

 

Correct Answer: B

Section: (none)

 

QUESTION 297

Your company has an application running as a Deployment in a Google Kubernetes Engine (GKE) cluster. Youhave separate clusters for development, staging, and production. You have discovered that the team is able to deploy a Docker image to the production cluster without first testing the deployment in development and thenstaging. You want to allow the team to have autonomy but want to prevent this from happening.

You want a Google Cloud solution that can be implemented quickly with minimal effort. What should you


do?

 

A.       Configure a Kubernetes lifecycle hook to prevent the container from starting if it is not approved for usagein the given environment.

B.       Implement a corporate policy to prevent teams from deploying Docker images to an environment unless theDocker image was tested in an earlier environment.

C.      Configure binary authorization policies for the development, staging, and production clusters. Createattestations as part of the continuous integration pipeline.

D.      Create a Kubernetes admissions controller to prevent the container from starting if it is not approved for usagein the given environment.

 

Correct Answer: C

Section: (none)

 

QUESTION 298

Your company wants to migrate their 10-TB on-premises database export into Cloud Storage. You want to minimize the time it takes to complete this activity, the overall cost, and database load. The bandwidth between the on-premises environment and Google Cloud is 1 Gbps. You want to follow Google- recommended practices. Whatshould you do?

 

A.       Develop a Dataflow job to read data directly from the database and write it into Cloud Storage.

B.       Use the Data Transfer appliance to perform an offline migration.

C.      Use a commercial partner ETL solution to extract the data from the on-premises database and upload it intoCloud Storage.

D.      Compress the data and upload it with gsutil -m to enable multi-threaded copy.

 

Correct Answer: A

Section: (none)

 

QUESTION 299

Your company has an enterprise application running on Compute Engine that requires high availability and highperformance. The application has been deployed on two instances in two zones in the same region in active-passive mode. The application writes data to a persistent disk. In the case of a single zone outage, that data should be immediately made available to the other instance in the other zone. You want to maximize performancewhile minimizing downtime and data loss. What should you do?

 

A.       1. Attach a persistent SSD disk to the first instance.

2.   Create a snapshot every hour.

3.   In case of a zone outage, recreate a persistent SSD disk in the second instance where data is coming fromthe created snapshot.

B.       1. Create a Cloud Storage bucket.

2.   Mount the bucket into the first instance with gcs-fuse.

3.   In case of a zone outage, mount the Cloud Storage bucket to the second instance with gcs-fuse.

C.      1. Attach a regional SSD persistent disk to the first instance.

2. In case of a zone outage, force-attach the disk to the other instance.

D.      1. Attach a local SSD to the first instance disk.

2.   Execute an rsync command every hour where the target is a persistent SSD disk attached to the secondinstance.

3.   In case of a zone outage, use the second instance.

 

Correct Answer: B

Section: (none)

 

QUESTION 300

You are designing a Data Warehouse on Google Cloud and want to store sensitive data in BigQuery. Your companyrequires you to generate the encryption keys outside of Google Cloud. You need to implement a solution. Whatshould you do?

 

A.       Generate a new key in Cloud Key Management Service (Cloud KMS). Store all data in Cloud Storage using the customer-managed key option and select the created key. Set up a Dataflow pipeline to decrypt the dataand to store it in a new BigQuery dataset.


B.       Generate a new key in Cloud KMS. Create a dataset in BigQuery using the customer-managed key optionand select the created key.

C.      Import a key in Cloud KMS. Store all data in Cloud Storage using the customer-managed key option and select the created key. Set up a Dataflow pipeline to decrypt the data and to store it in a new BigQuery dataset.

D.      Import a key in Cloud KMS. Create a dataset in BigQuery using the customer-supplied key option and selectthe created key.

 

Correct Answer: D

Section: (none)

 

小豬科技讓雲端變得簡單,了解更多 讓您的業務更上一層樓!


QUESTION 301

Your organization has stored sensitive data in a Cloud Storage bucket. For regulatory reasons, your company mustbe able to rotate the encryption key used to encrypt the data in the bucket. The data will be processed in Dataproc. You want to follow Google-recommended practices for security. What should you do?

 

A.       Create a key with Cloud Key Management Service (KMS). Encrypt the data using the encrypt method of CloudKMS.

B.       Create a key with Cloud Key Management Service (KMS). Set the encryption key on the bucket to the CloudKMS key.

C.      Generate a GPG key pair. Encrypt the data using the GPG key. Upload the encrypted data to the bucket.

D.      Generate an AES-256 encryption key. Encrypt the data in the bucket using the customer-suppliedencryption keys feature.

 

Correct Answer: D

Section: (none)

 

QUESTION 302

Your team needs to create a Google Kubernetes Engine (GKE) cluster to host a newly built application that requires access to third-party services on the internet. Your company does not allow any Compute Engine instance to have a public IP address on Google Cloud. You need to create a deployment strategy that adheres to these guidelines.What should you do?

 

A.       Configure the GKE cluster as a private cluster, and configure Cloud NAT Gateway for the cluster subnet.

B.       Configure the GKE cluster as a private cluster. Configure Private Google Access on the Virtual Private Cloud(VPC).

C.      Configure the GKE cluster as a route-based cluster. Configure Private Google Access on the Virtual PrivateCloud (VPC).

D.      Create a Compute Engine instance, and install a NAT Proxy on the instance. Configure all workloads on GKE topass through this proxy to access third-party services on the Internet.

 

Correct Answer: B

Section: (none)

 

QUESTION 303

Your company has a support ticketing solution that uses App Engine Standard. The project that contains the App Engine application already has a Virtual Private Cloud (VPC) network fully connected to the company's on-premises environment through a Cloud VPN tunnel. You want to enable the App Engine application to communicate with a database that is running in the company's on-premises environment. What should you do?

 

A.       Configure private Google access for on-premises hosts only.

B.       Configure private Google access.

C.      Configure private services access.

D.      Configure serverless VPC access.

 

Correct Answer: B


Section: (none)

 

QUESTION 304

Your company is planning to upload several important files to Cloud Storage. After the upload is completed, they want to verify that the uploaded content is identical to what they have on-premises. You want to minimize the costand effort of performing this check. What should you do?

 

A.       1. Use Linux shasum to compute a digest of files you want to upload.

2.   Use gsutil -m to upload all the files to Cloud Storage.

3.   Use gsutil cp to download the uploaded files.

4.   Use Linux shasum to compute a digest of the downloaded files.

5.   Compare the hashes.

B.       1. Use gsutil -m to upload the files to Cloud Storage.

2.   Develop a custom Java application that computes CRC32C hashes.

3.   Use gsutil ls -L gs://[YOUR_BUCKET_NAME] to collect CRC32C hashes of the uploaded files.

4.   Compare the hashes.

C.      1. Use gsutil -m to upload all the files to Cloud Storage.

2.   Use gsutil cp to download the uploaded files.

3.   Use Linux diff to compare the content of the files.

D.      1. Use gsutil -m to upload the files to Cloud Storage.

2.   Use gsutil hash -c FILE_NAME to generate CRC32C hashes of all on-premises files.

3.   Use gsutil ls -L gs://[YOUR_BUCKET_NAME] to collect CRC32C hashes of the uploaded files.

4.   Compare the hashes.

 

Correct Answer: C

Section: (none)

 

QUESTION 305

You have deployed an application on Anthos clusters (formerly Anthos GKE). According to the SRE practices atyour company, you need to be alerted if request latency is above a certain threshold for a specified amount of time.What should you do?

 

A.       Install Anthos Service Mesh on your cluster. Use the Google Cloud Console to define a Service LevelObjective (SLO), and create an alerting policy based on this SLO.

B.       Enable the Cloud Trace API on your project, and use Cloud Monitoring Alerts to send an alert based on theCloud Trace metrics.

C.      Use Cloud Profiler to follow up the request latency. Create a custom metric in Cloud Monitoring based on theresults of Cloud Profiler, and create an Alerting policy in case this metric exceeds the threshold.

D.      Configure Anthos Config Management on your cluster, and create a yaml file that defines the SLO and alertingpolicy you want to deploy in your cluster.

 

Correct Answer: A

Section: (none)

 

一站式雲端解決方案在等著您,立即註冊 小豬科技!


QUESTION 306

Your company has a stateless web API that performs scientific calculations. The web API runs on a single Google Kubernetes Engine (GKE) cluster. The cluster is currently deployed in us-central1. Your company has expanded tooffer your API to customers in Asia. You want to reduce the latency for users in Asia. What should you do?

 

A.       Create a second GKE cluster in asia-southeast1, and expose both APIs using a Service of type . Add thepublic IPs to the Cloud DNS zone.

LoadBalancer

B.       Use a global HTTP(s) load balancer with Cloud CDN enabled.

C.      Create a second GKE cluster in asia-southeast1, and use kubemci to create a global HTTP(s) loadbalancer.

D.      Increase the memory and CPU allocated to the application in the cluster.

 

Correct Answer: B

Section: (none)


QUESTION 307

You are migrating third-party applications from optimized on-premises virtual machines to Google Cloud. You are unsure about the optimum CPU and memory options. The applications have a consistent usage pattern acrossmultiple weeks. You want to optimize resource usage for the lowest cost. What should you do?

 

A.       Create an instance template with the smallest available machine type, and use an image of the third- party application taken from a current on-premises virtual machine. Create a managed instance group that usesaverage CPU utilization to autoscale the number of instances in the group. Modify the average CPU utilizationthreshold to optimize the number of instances running.

B.       Create an App Engine flexible environment, and deploy the third-party application using a Dockerfile and a custom runtime. Set CPU and memory options similar to your application's current on-premises virtual machinein the app.yaml file.

C.      Create multiple Compute Engine instances with varying CPU and memory options. Install the Cloud Monitoringagent, and deploy the third-party application on each of them. Run a load test with high traffic levels on theapplication, and use the results to determine the optimal settings.

D.      Create a Compute Engine instance with CPU and memory options similar to your application's current on-premises virtual machine. Install the Cloud Monitoring agent, and deploy the third-party application. Run a load test with normal traffic levels on the application, and follow the Rightsizing Recommendations in the CloudConsole.

 

Correct Answer: A

Section: (none)

 

QUESTION 308

Your company has a Google Cloud project that uses BigQuery for data warehousing. They have a VPN tunnelbetween the on-premises environment and Google Cloud that is configured with Cloud VPN. The security team wants to avoid data exfiltration by malicious insiders, compromised code, and accidental oversharing. What shouldthey do?

 

A.       Configure Private Google Access for on-premises only.

B.            Perform the following tasks:

1.   Create a service account.

2.   Give the BigQuery JobUser role and Storage Reader role to the service account.

3.   Remove all other IAM access from the project.

C.      Configure VPC Service Controls and configure Private Google Access.

D.      Configure Private Google Access.

 

Correct Answer: A

Section: (none)

 

QUESTION 309

You are working at an institution that processes medical data. You are migrating several workloads onto Google Cloud. Company policies require all workloads to run on physically separated hardware, and workloads fromdifferent clients must also be separated. You created a sole-tenant node group and added a node for each client. Youneed to deploy the workloads on these dedicated hosts. What should you do?

 

A.       Add the node group name as a network tag when creating Compute Engine instances in order to host eachworkload on the correct node group.

B.       Add the node name as a network tag when creating Compute Engine instances in order to host eachworkload on the correct node.

C.      Use node affinity labels based on the node group name when creating Compute Engine instances in order to host each workload on the correct node group.

D.      Use node affinity labels based on the node name when creating Compute Engine instances in order to hosteach workload on the correct node.

 

Correct Answer: C

Section: (none)

 

QUESTION 310

You want to enable your running Google Kubernetes Engine cluster to scale as demand for your application changes.

 

What should you do?

 

A.       Add additional nodes to your Kubernetes Engine cluster using the following command: gcloudcontainer clusters resize

CLUSTER_Name ?-size 10

B.       Add a tag to the instances in the cluster with the following command: gcloudcompute instances add-tags

INSTANCE - -tags enable-autoscaling max-nodes-10

C.      Update the existing Kubernetes Engine cluster with the following command: gcloudalpha container clusters

update mycluster - -enable-

autoscaling - -min-nodes=1 - -max-nodes=10

D.      Create a new Kubernetes Engine cluster with the following command: gcloudalpha container clusters

create mycluster - -enable-

autoscaling - -min-nodes=1 - -max-nodes=10 andredeploy your application

 

Correct Answer: C

Section: (none)


您值得擁有最好的支援,立即聯絡 我們的專員!

 

QUESTION 311

Introductory Info Company overview -

TerramEarth manufactures heavy equipment for the mining and agricultural industries. They currently have over 500dealers and service centers in 100 countries.

Their mission is to build products that make their customers more productive.

 

Solution concept -

There are 2 million TerramEarth vehicles in operation currently, and we see 20% yearly growth. Vehicles collect telemetry data from many sensors during operation. A small subset of critical data is transmitted from the vehicles in real time to facilitate fleet management. The rest of the sensor data is collected, compressed, anduploaded daily when the vehicles return to home base. Each vehicle usually generates 200 to 500 megabytes ofdata per day.

 

Existing technical environment -

TerramEarth's vehicle data aggregation and analysis infrastructure resides in Google Cloud and serves clients from all around the world. A growing amount of sensor data is captured from their two main manufacturing plants and sent to private data centers that contain their legacy inventory and logistics management systems. The private datacenters have multiple network interconnects configured to Google Cloud. The web frontend for dealers andcustomers is running in Google Cloud and allows access to stock management and analytics.

Business requirements -

Predict and detect vehicle malfunction and rapidly ship parts to dealerships for just-in-time repair where possible.

Decrease cloud operational costs and adapt to seasonality.Increase speed and reliability of development workflow.

Allow remote developers to be productive without compromising code or data security. Create a flexible and scalableplatform for developers to create custom API services for dealers and partners.

 

Technical requirements -

Create a new abstraction layer for HTTP API access to their legacy systems to enable a gradual move into the cloudwithout disrupting operations.

Modernize all CI/CD pipelines to allow developers to deploy container-based workloads in highly scalableenvironments.

Allow developers to run experiments without compromising security and governance requirements. Create a self-service portal for internal and partner developers to create new projects, request resources for data analytics jobs,and centrally manage access to the API endpoints. Use cloud-native solutions for keys and secrets managementand optimize for identity-based access. Improve and standardize tools necessary for application and networkmonitoring and troubleshooting.

 

Executive statement -


Our competitive advantage has always been our focus on the customer, with our ability to provide excellent customer service and minimize vehicle downtimes.

After moving multiple systems into Google Cloud, we are seeking new ways to provide best-in-class online fleet management services to our customers and improve operations of our dealerships. Our 5-year strategic plan is to create a partner ecosystem of new products by enabling access to our data, increasing autonomous operation capabilities of our vehicles, and creating a path to move the remaining legacy systems to the cloud. Question For this question, refer to the TerramEarth case study. TerramEarth has about 1 petabyte (PB) of vehicle testing data in a private data center. You want to move the data to Cloud Storage for your machine learning team. Currently, a 1-Gbps interconnect link is available for you. The machine learning team wants to start using the data in a month.What should you do?

 

A.       Request Transfer Appliances from Google Cloud, export the data to appliances, and return theappliances to Google Cloud.

B.       Configure the Storage Transfer service from Google Cloud to send the data from your data center to CloudStorage.

C.      Make sure there are no other users consuming the 1Gbps link, and use multi-thread transfer to upload thedata to Cloud Storage.

D.      Export files to an encrypted USB device, send the device to Google Cloud, and request an import of the data toCloud Storage.

 

Correct Answer: A

Section: (none)

 

QUESTION 312

Introductory Info Company overview -

TerramEarth manufactures heavy equipment for the mining and agricultural industries. They currently have over 500dealers and service centers in 100 countries.

Their mission is to build products that make their customers more productive.

 

Solution concept -

There are 2 million TerramEarth vehicles in operation currently, and we see 20% yearly growth. Vehicles collect telemetry data from many sensors during operation. A small subset of critical data is transmitted from the vehicles in real time to facilitate fleet management. The rest of the sensor data is collected, compressed, anduploaded daily when the vehicles return to home base. Each vehicle usually generates 200 to 500 megabytes ofdata per day.

 

Existing technical environment -

TerramEarth's vehicle data aggregation and analysis infrastructure resides in Google Cloud and serves clients from all around the world. A growing amount of sensor data is captured from their two main manufacturing plants and sent to private data centers that contain their legacy inventory and logistics management systems. The private datacenters have multiple network interconnects configured to Google Cloud. The web frontend for dealers andcustomers is running in Google Cloud and allows access to stock management and analytics.

 

Business requirements -

Predict and detect vehicle malfunction and rapidly ship parts to dealerships for just-in-time repair where possible.

Decrease cloud operational costs and adapt to seasonality.Increase speed and reliability of development workflow.

Allow remote developers to be productive without compromising code or data security. Create a flexible and scalableplatform for developers to create custom API services for dealers and partners.

 

Technical requirements -

Create a new abstraction layer for HTTP API access to their legacy systems to enable a gradual move into the cloudwithout disrupting operations.

Modernize all CI/CD pipelines to allow developers to deploy container-based workloads in highly scalableenvironments.

Allow developers to run experiments without compromising security and governance requirements. Create a self-service portal for internal and partner developers to create new projects, request resources for data analytics jobs,and centrally manage access to the API endpoints. Use cloud-native solutions for keys and secrets managementand optimize for identity-based access. Improve and standardize tools necessary for application and networkmonitoring and troubleshooting.

 

Executive statement -


Our competitive advantage has always been our focus on the customer, with our ability to provide excellent customer service and minimize vehicle downtimes.

After moving multiple systems into Google Cloud, we are seeking new ways to provide best-in-class online fleet management services to our customers and improve operations of our dealerships. Our 5-year strategic plan is to create a partner ecosystem of new products by enabling access to our data, increasing autonomous operation capabilities of our vehicles, and creating a path to move the remaining legacy systems to the cloud. Question For this question, refer to the TerramEarth case study. You are building a microservice-based application forTerramEarth. The application is based on Docker containers. You want to follow Google-recommended practices tobuild the application continuously and store the build artifacts. What should you do?

 

A.       Configure a trigger in Cloud Build for new source changes. Invoke Cloud Build to build container images for each microservice, and tag them using the code commit hash. Push the images to the Container Registry.

B.       Configure a trigger in Cloud Build for new source changes. The trigger invokes build jobs and build containerimages for the microservices. Tag the images with a version number, and push them to Cloud Storage.

C.      Create a Scheduler job to check the repo every minute. For any new change, invoke Cloud Build to buildcontainer images for the microservices. Tag the images using the current timestamp, and push them to theContainer Registry.

D.      Configure a trigger in Cloud Build for new source changes. Invoke Cloud Build to build one container image,and tag the image with the label 'latest.' Push the image to the Container Registry.

 

Correct Answer: A

Section: (none)

 

QUESTION 313

Introductory Info Company overview -

TerramEarth manufactures heavy equipment for the mining and agricultural industries. They currently have over 500dealers and service centers in 100 countries.

Their mission is to build products that make their customers more productive.

 

Solution concept -

There are 2 million TerramEarth vehicles in operation currently, and we see 20% yearly growth. Vehicles collect telemetry data from many sensors during operation. A small subset of critical data is transmitted from the vehicles in real time to facilitate fleet management. The rest of the sensor data is collected, compressed, anduploaded daily when the vehicles return to home base. Each vehicle usually generates 200 to 500 megabytes ofdata per day.

 

Existing technical environment -

TerramEarth's vehicle data aggregation and analysis infrastructure resides in Google Cloud and serves clients from all around the world. A growing amount of sensor data is captured from their two main manufacturing plants and sent to private data centers that contain their legacy inventory and logistics management systems. The private datacenters have multiple network interconnects configured to Google Cloud. The web frontend for dealers andcustomers is running in Google Cloud and allows access to stock management and analytics.

 

Business requirements -

Predict and detect vehicle malfunction and rapidly ship parts to dealerships for just-in-time repair where possible.

Decrease cloud operational costs and adapt to seasonality.Increase speed and reliability of development workflow.

Allow remote developers to be productive without compromising code or data security. Create a flexible and scalableplatform for developers to create custom API services for dealers and partners.

 

Technical requirements -

Create a new abstraction layer for HTTP API access to their legacy systems to enable a gradual move into the cloudwithout disrupting operations.

Modernize all CI/CD pipelines to allow developers to deploy container-based workloads in highly scalableenvironments.

Allow developers to run experiments without compromising security and governance requirements. Create a self-service portal for internal and partner developers to create new projects, request resources for data analytics jobs,and centrally manage access to the API endpoints. Use cloud-native solutions for keys and secrets managementand optimize for identity-based access. Improve and standardize tools necessary for


application and network monitoring and troubleshooting.

 

Executive statement -

Our competitive advantage has always been our focus on the customer, with our ability to provide excellent customer service and minimize vehicle downtimes.

After moving multiple systems into Google Cloud, we are seeking new ways to provide best-in-class online fleet management services to our customers and improve operations of our dealerships. Our 5-year strategic plan is to create a partner ecosystem of new products by enabling access to our data, increasing autonomous operation capabilities of our vehicles, and creating a path to move the remaining legacy systems to the cloud. Question For this question, refer to the TerramEarth case study. TerramEarth has a legacy web application that you cannotmigrate to cloud. However, you still want to build a cloud-native way to monitor the application. If the application goesdown, you want the URL to point to a "Site is unavailable" page as soon as possible. You also want your Ops teamto receive a notification for the issue. You need to build a reliable solution for minimum cost. What should you do?

 

A.       Create a scheduled job in Cloud Run to invoke a container every minute. The container will check theapplication URL. If the application is down, switch the URL to the "Site is unavailable" page, and notify the Opsteam.

B.       Create a cron job on a Compute Engine VM that runs every minute. The cron job invokes a Pythonprogram to check the application URL. If the application is down, switch the URL to the "Site isunavailable" page, and notify the Ops team.

C.      Create a Cloud Monitoring uptime check to validate the application URL. If it fails, put a message in aPub/Sub queue that triggers a Cloud Function to switch the URL to the "Site is unavailable" page, and notifythe Ops team.

D.      Use Cloud Error Reporting to check the application URL. If the application is down, switch the URL to the"Site is unavailable" page, and notify the Ops team.

 

Correct Answer: C

Section: (none)

 

QUESTION 314

Introductory Info Company overview -

TerramEarth manufactures heavy equipment for the mining and agricultural industries. They currently have over 500dealers and service centers in 100 countries.

Their mission is to build products that make their customers more productive.

 

Solution concept -

There are 2 million TerramEarth vehicles in operation currently, and we see 20% yearly growth. Vehicles collect telemetry data from many sensors during operation. A small subset of critical data is transmitted from the vehicles in real time to facilitate fleet management. The rest of the sensor data is collected, compressed, anduploaded daily when the vehicles return to home base. Each vehicle usually generates 200 to 500 megabytes ofdata per day.

 

Existing technical environment -

TerramEarth's vehicle data aggregation and analysis infrastructure resides in Google Cloud and serves clients from all around the world. A growing amount of sensor data is captured from their two main manufacturing plants and sent to private data centers that contain their legacy inventory and logistics management systems. The private datacenters have multiple network interconnects configured to Google Cloud. The web frontend for dealers andcustomers is running in Google Cloud and allows access to stock management and analytics.

 

Business requirements -

Predict and detect vehicle malfunction and rapidly ship parts to dealerships for just-in-time repair where possible.

Decrease cloud operational costs and adapt to seasonality.Increase speed and reliability of development workflow.

Allow remote developers to be productive without compromising code or data security. Create a flexible and scalableplatform for developers to create custom API services for dealers and partners.

Technical requirements -

Create a new abstraction layer for HTTP API access to their legacy systems to enable a gradual move into the cloudwithout disrupting operations.

Modernize all CI/CD pipelines to allow developers to deploy container-based workloads in highly scalableenvironments.

Allow developers to run experiments without compromising security and governance requirements. Create


a self-service portal for internal and partner developers to create new projects, request resources for dataanalytics jobs, and centrally manage access to the API endpoints. Use cloud-native solutions for keys and secretsmanagement and optimize for identity-based access. Improve and standardize tools necessary for application andnetwork monitoring and troubleshooting.

 

Executive statement -

Our competitive advantage has always been our focus on the customer, with our ability to provide excellent customer service and minimize vehicle downtimes.

After moving multiple systems into Google Cloud, we are seeking new ways to provide best-in-class online fleet management services to our customers and improve operations of our dealerships. Our 5-year strategic plan is to create a partner ecosystem of new products by enabling access to our data, increasing autonomous operation capabilities of our vehicles, and creating a path to move the remaining legacy systems to the cloud. Question For this question, refer to the TerramEarth case study. You are migrating a Linux-based application from your privatedata center to Google Cloud. The TerramEarth security team sent you several recent Linux vulnerabilities published by Common Vulnerabilities and Exposures (CVE). You need assistance in understanding how these vulnerabilities could impact your migration. What should you do? (Choose two.)

 

A.       Open a support case regarding the CVE and chat with the support engineer.

B.       Read the CVEs from the Google Cloud Status Dashboard to understand the impact.

C.      Read the CVEs from the Google Cloud Platform Security Bulletins to understand the impact.

D.      Post a question regarding the CVE in Stack Overflow to get an explanation.

E.       Post a question regarding the CVE in a Google Cloud discussion group to get an explanation.

 

Correct Answer: AC

Section: (none)

 

QUESTION 315

Introductory Info Company overview -

TerramEarth manufactures heavy equipment for the mining and agricultural industries. They currently have over 500dealers and service centers in 100 countries.

Their mission is to build products that make their customers more productive.

 

Solution concept -

There are 2 million TerramEarth vehicles in operation currently, and we see 20% yearly growth. Vehicles collect telemetry data from many sensors during operation. A small subset of critical data is transmitted from the vehicles in real time to facilitate fleet management. The rest of the sensor data is collected, compressed, anduploaded daily when the vehicles return to home base. Each vehicle usually generates 200 to 500 megabytes ofdata per day.

 

Existing technical environment -

TerramEarth's vehicle data aggregation and analysis infrastructure resides in Google Cloud and serves clients from all around the world. A growing amount of sensor data is captured from their two main manufacturing plants and sent to private data centers that contain their legacy inventory and logistics management systems. The private datacenters have multiple network interconnects configured to Google Cloud. The web frontend for dealers andcustomers is running in Google Cloud and allows access to stock management and analytics.

 

Business requirements -

Predict and detect vehicle malfunction and rapidly ship parts to dealerships for just-in-time repair where possible.

Decrease cloud operational costs and adapt to seasonality.Increase speed and reliability of development workflow.

Allow remote developers to be productive without compromising code or data security. ?Create a flexible andscalable platform for developers to create custom API services for dealers and partners.

 

Technical requirements -

Create a new abstraction layer for HTTP API access to their legacy systems to enable a gradual move into the cloudwithout disrupting operations.

Modernize all CI/CD pipelines to allow developers to deploy container-based workloads in highly scalableenvironments.

Allow developers to run experiments without compromising security and governance requirements. ?Create a self-service portal for internal and partner developers to create new projects, request resources for data


analytics jobs, and centrally manage access to the API endpoints. ?Use cloud-native solutions for keys and secretsmanagement and optimize for identity-based access. ?Improve and standardize tools necessary for application andnetwork monitoring and troubleshooting.

 

Executive statement -

Our competitive advantage has always been our focus on the customer, with our ability to provide excellent customer service and minimize vehicle downtimes.

After moving multiple systems into Google Cloud, we are seeking new ways to provide best-in-class online fleet management services to our customers and improve operations of our dealerships. Our 5-year strategic plan is to create a partner ecosystem of new products by enabling access to our data, increasing autonomous operation capabilities of our vehicles, and creating a path to move the remaining legacy systems to the cloud. Question For this question, refer to the TerramEarth case study. You have broken down a legacy monolithic application into a fewcontainerized RESTful microservices. You want to run those microservices on Cloud Run. You also want to make sure the services are highly available with low latency to your customers. What should you do?

 

A.       Deploy Cloud Run services to multiple availability zones. Create Cloud Endpoints that point to theservices. Create a global HTTP(S) Load Balancing instance and attach the Cloud Endpoints to itsbackend.

B.       Deploy Cloud Run services to multiple regions. Create serverless network endpoint groups pointing to the services. Add the serverless NEGs to a backend service that is used by a global HTTP(S) Load Balancinginstance.

C.      Deploy Cloud Run services to multiple regions. In Cloud DNS, create a latency-based DNS name that pointsto the services.

D.      Deploy Cloud Run services to multiple availability zones. Create a TCP/IP global load balancer. Add the CloudRun Endpoints to its backend service.

 

Correct Answer: B

Section: (none)

 

探索小豬科技的多元服務,看看我們如何支持您的業務發展!了解更多


QUESTION 316

Introductory Info Company overview -

TerramEarth manufactures heavy equipment for the mining and agricultural industries. They currently have over 500dealers and service centers in 100 countries.

Their mission is to build products that make their customers more productive.

 

Solution concept -

There are 2 million TerramEarth vehicles in operation currently, and we see 20% yearly growth. Vehicles collect telemetry data from many sensors during operation. A small subset of critical data is transmitted from the vehicles in real time to facilitate fleet management. The rest of the sensor data is collected, compressed, anduploaded daily when the vehicles return to home base. Each vehicle usually generates 200 to 500 megabytes ofdata per day.

 

Existing technical environment -

TerramEarth's vehicle data aggregation and analysis infrastructure resides in Google Cloud and serves clients from all around the world. A growing amount of sensor data is captured from their two main manufacturing plants and sent to private data centers that contain their legacy inventory and logistics management systems. The private datacenters have multiple network interconnects configured to Google Cloud. The web frontend for dealers andcustomers is running in Google Cloud and allows access to stock management and analytics.

 

Business requirements -

?Predict and detect vehicle malfunction and rapidly ship parts to dealerships for just-in-time repair where possible.

?Decrease cloud operational costs and adapt to seasonality.

?Increase speed and reliability of development workflow.

?Allow remote developers to be productive without compromising code or data security. ?Create a flexible andscalable platform for developers to create custom API services for dealers and partners.

 

Technical requirements -

?Create a new abstraction layer for HTTP API access to their legacy systems to enable a gradual move into thecloud without disrupting operations.

?Modernize all CI/CD pipelines to allow developers to deploy container-based workloads in highly scalableenvironments.


?Allow developers to run experiments without compromising security and governance requirements. ? Create aself-service portal for internal and partner developers to create new projects, request resources for data analyticsjobs, and centrally manage access to the API endpoints. ?Use cloud-native solutions for keys and secrets management and optimize for identity-based access. ?Improve and standardize tools necessary for application andnetwork monitoring and troubleshooting.

 

Executive statement -

Our competitive advantage has always been our focus on the customer, with our ability to provide excellent customer service and minimize vehicle downtimes.

After moving multiple systems into Google Cloud, we are seeking new ways to provide best-in-class online fleet management services to our customers and improve operations of our dealerships. Our 5-year strategic plan is to create a partner ecosystem of new products by enabling access to our data, increasing autonomous operation capabilities of our vehicles, and creating a path to move the remaining legacy systems to the cloud. Question For this question, refer to the TerramEarth case study. You start to build a new application that uses a few Cloud Functions for the backend. One use case requires a Cloud Function func_display to invoke another Cloud Functionfunc_query. You want func_query only to accept invocations from func_display. You also want to follow Google'srecommended best practices. What should you do?

 

A.       Create a token and pass it in as an environment variable to func_display. When invoking func_query, include the token in the request. Pass the same token to func_query and reject the invocation if the tokens aredifferent.

B.       Make func_query 'Require authentication.' Create a unique service account and associate it to func_display.Grant the service account invoker role for func_query. Create an id token in func_display and include the tokento the request when invoking func_query.

C.      Make func_query 'Require authentication' and only accept internal traffic. Create those two functions in thesame VPC. Create an ingress firewall rule for func_query to only allow traffic from func_display.

D.      Create those two functions in the same project and VPC. Make func_query only accept internal traffic. Create an ingress firewall for func_query to only allow traffic from func_display. Also, make sure both functions usethe same service account.

 

Correct Answer: B

Section: (none)

 

QUESTION 317

Introductory Info Company overview -

Mountkirk Games makes online, session-based, multiplayer games for mobile platforms. They have recentlystarted expanding to other platforms after successfully migrating their on-premises environments to Google Cloud.

Their most recent endeavor is to create a retro-style first-person shooter (FPS) game that allows hundreds of simultaneous players to join a geo-specific digital arena from multiple platforms and locations. A real- time digitalbanner will display a global leaderboard of all the top players across every active arena.

 

Solution concept -

Mountkirk Games is building a new multiplayer game that they expect to be very popular. They plan to deploy the game TMs backend on Google Kubernetes Engine so they can scale rapidly and use Google TMs global loadbalancer to route players to the closest regional game arenas. In order to keep the global leader board in sync, theyplan to use a multi-region Spanner cluster.

 

Existing technical environment -

The existing environment was recently migrated to Google Cloud, and five games came across using lift- and-shift virtual machine migrations, with a few minor exceptions. Each new game exists in an isolated Google Cloudproject nested below a folder that maintains most of the permissions and network policies. Legacy games with low traffic have been consolidated into a single project. There are also separate environments for developmentand testing.

 

Business requirements -

Support multiple gaming platforms. Supportmultiple regions.

Support rapid iteration of game features.Minimize latency.

Optimize for dynamic scaling.

Use managed services and pooled resources.Minimize costs.


Technical requirements -

Dynamically scale based on game activity.

Publish scoring data on a near real-time global leaderboard. Store game activity logs in structured files for future analysis. Use GPU processing to render graphics server-side for multi-platform support. Support eventual migrationof legacy games to this new platform.

 

Executive statement -

Our last game was the first time we used Google Cloud, and it was a tremendous success. We were able to analyzeplayer behavior and game telemetry in ways that we never could before. This success allowed us to bet on a full migration to the cloud and to start building all-new games using cloud-native design principles. Our new game is our most ambitious to date and will open up doors for us to support more gaming platforms beyond mobile. Latency is our top priority, although cost management is the next most important challenge. As with our first cloud-based game, we have grown to expect the cloud to enable advanced analytics capabilities so we can rapidly iterate on ourdeployments of bug fixes and new functionality.

Question Your development team has created a mobile game app. You want to test the new mobile app on Android and iOS devices with a variety of configurations. You need to ensure that testing is efficient and cost-effective.What should you do?

 

A.       Upload your mobile app to the Firebase Test Lab, and test the mobile app on Android and iOS devices.

B.       Create Android and iOS VMs on Google Cloud, install the mobile app on the VMs, and test the mobile app.

C.      Create Android and iOS containers on Google Kubernetes Engine (GKE), install the mobile app on thecontainers, and test the mobile app.

D.      Upload your mobile app with different configurations to Firebase Hosting and test each configuration.

 

Correct Answer: A

Section: (none)

 

QUESTION 318

Introductory Info Company overview -

Mountkirk Games makes online, session-based, multiplayer games for mobile platforms. They have recentlystarted expanding to other platforms after successfully migrating their on-premises environments to Google Cloud.

Their most recent endeavor is to create a retro-style first-person shooter (FPS) game that allows hundreds of simultaneous players to join a geo-specific digital arena from multiple platforms and locations. A real- time digitalbanner will display a global leaderboard of all the top players across every active arena.

 

Solution concept -

Mountkirk Games is building a new multiplayer game that they expect to be very popular. They plan to deploy the game TMs backend on Google Kubernetes Engine so they can scale rapidly and use Google TMs global loadbalancer to route players to the closest regional game arenas. In order to keep the global leader board in sync, theyplan to use a multi-region Spanner cluster.

 

Existing technical environment -

The existing environment was recently migrated to Google Cloud, and five games came across using lift- and-shift virtual machine migrations, with a few minor exceptions. Each new game exists in an isolated Google Cloudproject nested below a folder that maintains most of the permissions and network policies. Legacy games with low traffic have been consolidated into a single project. There are also separate environments for developmentand testing.

 

Business requirements -

Support multiple gaming platforms. Supportmultiple regions.

Support rapid iteration of game features.Minimize latency.

Optimize for dynamic scaling.

Use managed services and pooled resources.Minimize costs.

 

Technical requirements -

Dynamically scale based on game activity.

Publish scoring data on a near real-time global leaderboard. Store game activity logs in structured files for future analysis. Use GPU processing to render graphics server-side for multi-platform support. Support eventual migrationof legacy games to this new platform.


Executive statement -

Our last game was the first time we used Google Cloud, and it was a tremendous success. We were able to analyzeplayer behavior and game telemetry in ways that we never could before. This success allowed us to bet on a full migration to the cloud and to start building all-new games using cloud-native design principles. Our new game is our most ambitious to date and will open up doors for us to support more gaming platforms beyond mobile. Latency is our top priority, although cost management is the next most important challenge. As with our first cloud-based game, we have grown to expect the cloud to enable advanced analytics capabilities so we can rapidly iterate on ourdeployments of bug fixes and new functionality.

Question Mountkirk Games wants you to secure the connectivity from the new gaming application platform to Google Cloud. You want to streamline the process and follow Google-recommended practices. What should you do?

 

A.       Configure Workload Identity and service accounts to be used by the application platform.

B.       Use Kubernetes Secrets, which are obfuscated by default. Configure these Secrets to be used by theapplication platform.

C.      Configure Kubernetes Secrets to store the secret, enable Application-Layer Secrets Encryption, and use Cloud Key Management Service (Cloud KMS) to manage the encryption keys. Configure these Secrets to be used bythe application platform.

D.      Configure HashiCorp Vault on Compute Engine, and use customer managed encryption keys and Cloud Key Management Service (Cloud KMS) to manage the encryption keys. Configure these Secrets to be used by theapplication platform.

 

Correct Answer: A

Section: (none)

 

QUESTION 319

Introductory Info Company overview -

Mountkirk Games makes online, session-based, multiplayer games for mobile platforms. They have recentlystarted expanding to other platforms after successfully migrating their on-premises environments to Google Cloud.

Their most recent endeavor is to create a retro-style first-person shooter (FPS) game that allows hundreds of simultaneous players to join a geo-specific digital arena from multiple platforms and locations. A real- time digitalbanner will display a global leaderboard of all the top players across every active arena.

 

Solution concept -

Mountkirk Games is building a new multiplayer game that they expect to be very popular. They plan to deploy the game TMs backend on Google Kubernetes Engine so they can scale rapidly and use Google TMs global loadbalancer to route players to the closest regional game arenas. In order to keep the global leader board in sync, theyplan to use a multi-region Spanner cluster.

 

Existing technical environment -

The existing environment was recently migrated to Google Cloud, and five games came across using lift- and-shift virtual machine migrations, with a few minor exceptions. Each new game exists in an isolated Google Cloudproject nested below a folder that maintains most of the permissions and network policies. Legacy games with low traffic have been consolidated into a single project. There are also separate environments for developmentand testing.

 

Business requirements -

Support multiple gaming platforms. Supportmultiple regions.

Support rapid iteration of game features.Minimize latency.

Optimize for dynamic scaling.

Use managed services and pooled resources.Minimize costs.

 

Technical requirements -

Dynamically scale based on game activity.

Publish scoring data on a near real-time global leaderboard. Store game activity logs in structured files for future analysis. Use GPU processing to render graphics server-side for multi-platform support. Support eventual migrationof legacy games to this new platform.

 

Executive statement -


Our last game was the first time we used Google Cloud, and it was a tremendous success. We were able to analyzeplayer behavior and game telemetry in ways that we never could before. This success allowed us to bet on a full migration to the cloud and to start building all-new games using cloud-native design principles. Our new game is our most ambitious to date and will open up doors for us to support more gaming platforms beyond mobile. Latency is our top priority, although cost management is the next most important challenge. As with our first cloud-based game, we have grown to expect the cloud to enable advanced analytics capabilities so we can rapidly iterate on ourdeployments of bug fixes and new functionality.

Question Your development teams release new versions of games running on Google Kubernetes Engine (GKE) daily. You want to create service level indicators (SLIs) to evaluate the quality of the new versions from the user  TMs perspective. What should you do?

 

A.       Create CPU Utilization and Request Latency as service level indicators.

B.       Create GKE CPU Utilization and Memory Utilization as service level indicators.

C.      Create Request Latency and Error Rate as service level indicators.

D.      Create Server Uptime and Error Rate as service level indicators.

 

Correct Answer: C

Section: (none)

 

QUESTION 320

Introductory Info Company overview -

Mountkirk Games makes online, session-based, multiplayer games for mobile platforms. They have recentlystarted expanding to other platforms after successfully migrating their on-premises environments to Google Cloud.

Their most recent endeavor is to create a retro-style first-person shooter (FPS) game that allows hundreds of simultaneous players to join a geo-specific digital arena from multiple platforms and locations. A real- time digitalbanner will display a global leaderboard of all the top players across every active arena.

 

Solution concept -

Mountkirk Games is building a new multiplayer game that they expect to be very popular. They plan to deploy the game TMs backend on Google Kubernetes Engine so they can scale rapidly and use Google TMs global loadbalancer to route players to the closest regional game arenas. In order to keep the global leader board in sync, theyplan to use a multi-region Spanner cluster.

 

Existing technical environment -

The existing environment was recently migrated to Google Cloud, and five games came across using lift- and-shift virtual machine migrations, with a few minor exceptions. Each new game exists in an isolated Google Cloudproject nested below a folder that maintains most of the permissions and network policies. Legacy games with low traffic have been consolidated into a single project. There are also separate environments for developmentand testing.

 

Business requirements -

Support multiple gaming platforms. Supportmultiple regions.

Support rapid iteration of game features.Minimize latency.

Optimize for dynamic scaling.

Use managed services and pooled resources.Minimize costs.

 

Technical requirements -

Dynamically scale based on game activity.

Publish scoring data on a near real-time global leaderboard. Store game activity logs in structured files for future analysis. Use GPU processing to render graphics server-side for multi-platform support. Support eventual migrationof legacy games to this new platform.

 

Executive statement -

Our last game was the first time we used Google Cloud, and it was a tremendous success. We were able to analyzeplayer behavior and game telemetry in ways that we never could before. This success allowed us to bet on a full migration to the cloud and to start building all-new games using cloud-native design principles. Our new game is our most ambitious to date and will open up doors for us to support more gaming platforms beyond mobile. Latency is our top priority, although cost management is the next most important challenge. As with our first cloud-based game, we have grown to expect the cloud to enable advanced analytics capabilities so we can rapidly iterate on ourdeployments of bug fixes and new functionality.


Question You need to implement a network ingress for a new game that meets the defined business and technical requirements. Mountkirk Games wants each regional game instance to be located in multiple Google Cloudregions. What should you do?

 

A.       Configure a global load balancer connected to a managed instance group running Compute Engineinstances.

B.       Configure kubemci with a global load balancer and Google Kubernetes Engine.

C.      Configure a global load balancer with Google Kubernetes Engine.

D.      Configure Ingress for Anthos with a global load balancer and Google Kubernetes Engine.

 

Correct Answer: D

Section: (none)

讓小豬科技專員為您提供量身訂製的解決方案,立即聯絡


分享至
成為作者繼續創作的動力吧!
© 2024 vocus All rights reserved.