Professional Cloud Network Engineer Exam

Exam Professional Cloud Network Engineer All QuestionsBrowse all questions from this exam

Question 21

You are increasing your usage of Cloud VPN between on-premises and GCP, and you want to support more traffic than a single tunnel can handle. You want to increase the available bandwidth using Cloud VPN.

What should you do?

Double the MTU on your on-premises VPN gateway from 1460 bytes to 2920 bytes.

Create two VPN tunnels on the same Cloud VPN gateway that point to the same destination VPN gateway IP address.

Add a second on-premises VPN gateway with a different public IP address. Create a second tunnel on the existing Cloud VPN gateway that forwards the same IP range, but points at the new on-premises gateway IP.

Add a second Cloud VPN gateway in a different region than the existing VPN gateway. Create a new tunnel on the second Cloud VPN gateway that forwards the same IP range, but points to the existing on-premises VPN gateway IP address.

Correct Answer: C

To increase the available bandwidth using Cloud VPN between on-premises and GCP, you should add a second on-premises VPN gateway with a different public IP address. Then, create a second tunnel on the existing Cloud VPN gateway that forwards the same IP range but points to the new on-premises gateway IP. This configuration allows for load balancing the traffic across both VPN gateways and effectively increases the bandwidth.

Discussion

HateMicrosoftOption: C

The correct anwser is C Option 1: Scale the on-premises VPN gateway https://cloud.google.com/network-connectivity/docs/vpn/concepts/classic-topologies#option-1

seddyOption: C

Answer is 100% C! There is practically no difference between C and D in terms of increasing the throughput. However, D does not work due to one info given in the statement. 'create a secondary VPN gateway in a DIFFERENT region'. The secondary VPN gateway should be in the same region as the first VPN gateway in order for this method to work.

Mo7yOption: C

Option C is the only option that matches one of the Google Increased throughput and load balancing options (option 2), and it has to be in the same region https://cloud.google.com/network-connectivity/docs/vpn/concepts/classic-topologies#option-1

BlitzerOption: C

Answer C: Just read the first sentence https://cloud.google.com/network-connectivity/docs/vpn/concepts/classic-topologies#option-1

smarquesOption: C

C is the correct option. Option D says to create another Cloud VPN GW to a DIFFERENT region, so it's not an option here. Doc: https://cloud.google.com/network-connectivity/docs/vpn/concepts/classic-topologies#vpn-throughput

xhilmiOption: C

Choose C. Explanation: Adding a second on-premises VPN gateway with a different public IP address can provide redundancy and potentially load balancing across the two on-premises gateways. Creating a second tunnel on the existing Cloud VPN gateway that forwards the same IP range to the new on-premises gateway allows you to distribute traffic across both on-premises gateways. If the goal is to increase bandwidth by load balancing traffic across two on-premises VPN gateways, this approach can be valid.

BenMSOption: C

Definitely C

mcjimOption: C

You want this in the same region, so the answer is C

aparna20Option: B

B is correct as per https://cloud.google.com/network-connectivity/docs/vpn/concepts/classic-topologies#option-1

aparna20

I mean C

Ben756Option: B

Option B is the correct choice. By creating two VPN tunnels, you can distribute traffic between the tunnels, effectively increasing the available bandwidth. This configuration is known as a "redundant VPN gateway" configuration, where both tunnels are active at the same time and traffic can flow through either of them.

junior6

I dont think so increase BW by creating multiple tunnels on top of internetlinks.

junior6

yes now i roll back my comments

Ben756

Yes, I was wrong. C is correct: https://cloud.google.com/network-connectivity/docs/vpn/concepts/classic-topologies#option-1

conipOption: B

why not B? you can have 1 cloudVPN gw in HA setup and you can configure each tunnel individually to the same remote public peer. Tested in the LAB and working fine

GCP72Option: C

The correct answer is C

nkastanasOption: C

NOT B because would not necessarily increase the available bandwidth as the tunnels would still be limited by the capacity of the single on-premises VPN gateway

dev62Option: B

B seems correct : One peer VPN device with one IP address This topology describes one HA VPN gateway that connects to one peer device that has one external IP address. The HA VPN gateway uses two tunnels, both tunnels to the single external IP address on the peer device. https://cloud.google.com/network-connectivity/docs/vpn/concepts/topologies#1-peer-1-address

desertlotus1211

If you look at the diagram - the VPN gateway has two external IP address, not one. C is correct

desertlotus1211

Apologizes - Answer B says two VPN tunnels on the VPN gateway... no reference to IP addresses. Answer B is 'more' correct thanC.

HetaviOption: C

https://cloud.google.com/network-connectivity/docs/vpn/concepts/classic-topologies#option-1 .....based on this, answer is C

pk349Option: C

C: Set up a second on-premises VPN gateway device with a different external IP address. Create a second tunnel on your existing Cloud VPN gateway that forwards the same IP range, but pointing at the second on-premises gateway IP. Your Cloud VPN gateway automatically load balances between the configured tunnels. You can set up the VPN gateways to have multiple tunnels load balanced this way to increase the aggregate VPN connectivity throughput.

AzureDP900Option: C

C. Add a second on-premises VPN gateway with a different public IP address. Create a second tunnel on the existing Cloud VPN gateway that forwards the same IP range, but points at the new on-premises gateway IP.