Professional-Cloud-Network-Engineer Exam Dumps : Google Cloud Certified - Professional Cloud Network Engineer

To configure Cloud CDN for an application hosted outside of Google Cloud (e.g., in AWS), you need to use an internet network endpoint group (NEG). An internet NEG allows you to point to external endpoints using their FQDN or IP address. Cloud CDN works with external HTTP(S) Load Balancers, and you enable CDN on the backend service associated with the load balancer. A Network Load Balancer (passthrough) does not support Cloud CDN.

Exact Extract:

"To enable Cloud CDN for content hosted outside of Google Cloud, you must use an external HTTP(S) Load Balancer with an internet network endpoint group (NEG)."

"An internet NEG specifies one or more external endpoints that can be reached by an external HTTP(S) Load Balancer. You can specify endpoints using an IP address and port, or a fully qualified domain name (FQDN) and port."

"Cloud CDN is enabled on the backend service of an external HTTP(S) Load Balancer."Reference: Google Cloud CDN Documentation - Caching external content, Internet NEGs overview

To control internet access on a per-URL basis (including hostname and path), you should deploy Secure Web Proxy with global access enabled. The Secure Web Proxy will allow policy-based filtering of web traffic, allowing control over which URLs can be accessed based on the URL list defined in the policy. Unlike Cloud NAT, which does not support FQDN filtering, Secure Web Proxy is designed to provide such control, especially for scenarios with sensitive or controlled internet access requirements.

When diagnosing latency issues that are suspected to be a Google Cloud platform issue, the Network Intelligence Center Performance Dashboard is the recommended tool. It provides visibility into network performance metrics across Google Cloud, including inter-region latency, which can help confirm if the increased latency is due to a platform-wide issue rather than specific to your VPC or application. While Connectivity Tests are useful for verifying reachability and basic network configurations, and tcpdump is for in-instance packet analysis, neither provides the broad, platform-level visibility needed to assess general Google Cloud network performance trends and baselines.

Exact Extract:

"The Performance Dashboard in Network Intelligence Center helps you visualize network performance metrics for your Google Cloud network, including inter-region latency and packet loss. It provides insights into the health of the Google Cloud network and can help you identify if performance degradations are due to the underlying platform."

"The Performance Dashboard provides an aggregated view of network performance across Google Cloud, allowing you to compare your current latency with historical trends and Google Cloud's overall network performance."Reference: Google Cloud Network Intelligence Center Documentation - Performance Dashboard