Professional Cloud Architect Exam

Exam Professional Cloud Architect All QuestionsBrowse all questions from this exam

Question 114

Your company uses the Firewall Insights feature in the Google Network Intelligence Center. You have several firewall rules applied to Compute Engine instances.

You need to evaluate the efficiency of the applied firewall ruleset. When you bring up the Firewall Insights page in the Google Cloud Console, you notice that there are no log rows to display. What should you do to troubleshoot the issue?

Enable Virtual Private Cloud (VPC) flow logging.

Enable Firewall Rules Logging for the firewall rules you want to monitor.

Verify that your user account is assigned the compute.networkAdmin Identity and Access Management (IAM) role.

Install the Google Cloud SDK, and verify that there are no Firewall logs in the command line output.

Correct Answer: B

To troubleshoot the issue of no log rows displaying in the Firewall Insights page of the Google Cloud Console, you need to enable Firewall Rules Logging for the specific firewall rules you want to monitor. This feature is necessary for the firewall logs to be generated and displayed in Firewall Insights, allowing you to evaluate the efficiency of your firewall ruleset.

Discussion

nohelOption: B

Answer is B when you create a firewall rule there is an option for firewall rule logging on/off. It is set to off by default. To get firewall insights or view the logs for a specific firewall rule you need to enable logging while creating the rule or you can enable it by editing that rule. https://cloud.google.com/network-intelligence-center/docs/firewall-insights/how-to/using-firewall-insights#enabling-fw-rules-logging

victory108Option: B

B. Enable Firewall Rules Logging for the firewall rules you want to monitor.

windsor_43Option: B

The Answer is B Just had my exam today with a pass, this question was in the exam. Dated 31/12/22 Thanks to this site it was by far my most valuable

Gino17mOption: B

Corrent answer is B

DrishaS4Option: B

https://cloud.google.com/network-intelligence-center/docs/firewall-insights/how-to/using-firewall-insights#enabling-fw-rules-logging

tannVOption: B

Answered B. Got this question!

GlebG

First D, then B

RVivekOption: B

https://cloud.google.com/vpc/docs/firewall-rules-logging

jay9114Option: B

You have to enable logging for a firewall rule in order to see the rows. "When you enable logging for a firewall rule, Google Cloud creates an entry called a connection record each time the rule allows or denies traffic." https://cloud.google.com/vpc/docs/firewall-rules-logging

meguminOption: B

B is ok

minmin2020Option: B

B. Enable Firewall Rules Logging for the firewall rules you want to monitor.

AzureDP900Option: B

Enable firewall rules logging , B is right

AzureDP900Option: B

B is most appropriate answer, I will choose B.

AzureDP900

https://cloud.google.com/vpc/docs/firewall-rules-logging

azureaspirant

02/15/21 exam

haroldbenitesOption: B

Go for B

vincy2202Option: B

B is the correct answer https://cloud.google.com/network-intelligence-center/docs/firewall-insights/how-to/using-firewall-insights

pakilodiOption: B

B is the answer here