Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Free Resources

Difficulty IndexLearn — Free ChaptersIT GlossaryFree Tools & LabsStudy GuidesCareer RoadmapsBrowse by VendorCisco Command ReferenceCCNA Scenarios

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

← Designing, Planning, and Prototyping a GCP Network practice sets

PCNE Designing, Planning, and Prototyping a GCP Network • Complete Question Bank

PCNE Designing, Planning, and Prototyping a GCP Network — All Questions With Answers

Complete PCNE Designing, Planning, and Prototyping a GCP Network question bank — all 0 questions with answers and detailed explanations.

131
Questions
Free
No signup
Certifications/PCNE/Practice Test/Designing, Planning, and Prototyping a GCP Network/All Questions
Question 1easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company wants to connect two VPCs in the same region so that they can communicate using internal IP addresses without transiting the internet. They have no overlapping IP ranges. Which GCP networking feature should they use?

Question 2easymultiple choice
Review the full subnetting walkthrough →

An organization needs to create a VPC that automatically creates subnets in every region as new regions become available. Which VPC type should they use?

Question 3mediummultiple choice
Review the full routing breakdown →

A company has two VPCs connected via VPC peering. They want resources in VPC A to be able to reach a service in VPC B that uses a custom static route. What must be configured on the VPC peering connection?

Question 4mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A financial services company requires a dedicated, low-latency connection between their on-premises data center and Google Cloud. They need a 99.99% SLA and bandwidth of 10 Gbps. Which connectivity option should they choose?

Question 5mediummultiple choice
Read the full VPN explanation →

A company is planning a hybrid connectivity setup using HA VPN. They want to ensure high availability by using two Cloud VPN gateways. How many tunnels and external IP addresses are required for the HA VPN to achieve 99.99% SLA?

Question 6hardmultiple choice
Read the full DNS explanation →

A company uses Cloud DNS private zones for their internal network. They have multiple projects and want to resolve DNS names from one project's private zone in another project. Which feature should they use?

Question 7mediummultiple choice
Review the full subnetting walkthrough →

An organization has multiple VPCs in a Shared VPC setup. They want to allow only certain service projects to use a specific subnet in the host project. What should they configure?

Question 8hardmultiple choice
Open the full BGP breakdown →

A company is connecting their on-premises network to GCP via Cloud Interconnect with VLAN attachments and BGP sessions. They want to prefer one attachment over the other for traffic to a specific prefix. Which BGP attribute should they use?

Question 9easymultiple choice
Review the full subnetting walkthrough →

A developer wants to create a GKE cluster with a separate subnet for pods and services to avoid IP address exhaustion. What type of secondary IP ranges should they configure on the VPC subnet?

Question 10mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company wants to connect multiple on-premises data centers and multiple GCP VPCs in a hub-and-spoke topology using GCP's managed service. Which service provides this capability?

Question 11hardmultiple choice
Read the full DNS explanation →

An on-premises DNS server is configured to forward queries for a private zone in GCP. They set up inbound DNS forwarding from on-prem to GCP using Cloud DNS forwarding. What must be configured on the VPC?

Question 12mediummultiple choice
Open the full BGP breakdown →

A company needs to advertise a specific prefix from their on-premises network to GCP via Cloud Router. They do not want to advertise all connected networks. What should they configure on the Cloud Router's BGP peer?

Question 13easymulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is planning to use Partner Interconnect to connect their on-premises network to GCP. Which TWO of the following are characteristics of Partner Interconnect?

Question 14mediummulti select
Read the full DNS explanation →

A company needs to design a split-horizon DNS solution where internal queries resolve to private IPs and external queries resolve to public IPs for the same domain. Which TWO services or configurations should they use?

Question 15hardmulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company has multiple VPCs in different projects and wants to connect them all to a single on-premises data center using a hub-and-spoke model with Network Connectivity Center (NCC). Which THREE components are required for this setup?

Question 16easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A startup is setting up a new GCP project and needs to create a VPC that will have predictable IP ranges for future peering with other VPCs. They do not anticipate needing to grow the network beyond the initial IP range. Which VPC type should they choose?

Question 17mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization is migrating on-premises workloads to GCP. They need a dedicated, high-bandwidth connection with a 99.99% SLA. They have a co-location facility near a Google Cloud region. Which connectivity option should they choose?

Question 18mediummultiple choice
Review the full routing breakdown →

A company has two VPCs in different projects that need to communicate. They want to avoid using VPC peering due to the limit on the number of peerings and the need for transitive routing. Which GCP service can provide a hub-and-spoke topology to connect multiple VPCs and on-premises networks?

Question 19hardmultiple choice
Open the full BGP breakdown →

A network engineer is setting up HA VPN between an on-premises network and a GCP VPC. They have configured two Cloud VPN gateways in GCP, each with two interfaces, and four tunnels. They are using BGP with Cloud Router. However, only one of the four tunnels is established. What is the most likely cause?

Question 20easymultiple choice
Read the full DNS explanation →

A company wants to use Cloud DNS to resolve queries for a private zone (e.g., example.internal) from multiple VPCs in the same project. They need to ensure that instances in all VPCs can resolve the zone. What is the simplest approach?

Question 21mediummultiple choice
Read the full VPN explanation →

An organization is designing IP address planning for hybrid connectivity. They have three VPCs (Prod, Dev, Test) that will be peered with each other and also connected to an on-premises network via Cloud VPN. Which practice should they follow to avoid IP address overlap?

Question 22mediummultiple choice
Review the full subnetting walkthrough →

A company has a Shared VPC setup with a host project and several service projects. They want to grant a service project's network admin the ability to create VM instances using a specific subnet from the host project. Which IAM role should they assign at the subnet level?

Question 23hardmultiple choice
Open the full BGP breakdown →

A network engineer is troubleshooting BGP route propagation between an on-premises network and a GCP VPC via Cloud Router. The on-premises router is advertising a specific subnet (10.1.0.0/16), but GCP is not receiving the route. Cloud Router BGP sessions are established. Which configuration could be the issue?

Question 24easymultiple choice
Review the full subnetting walkthrough →

A developer needs to create a GKE cluster that uses a secondary IP range for pods and another for services. During VPC subnet creation, they set a primary IP range and two secondary ranges. Which flag must be used when creating the subnet to specify the pods range?

Question 25mediummultiple choice
Read the full DNS explanation →

An organization needs DNS resolution for on-premises hosts to resolve GCP private zone names (e.g., myinstance.gcp.internal). They have Cloud DNS private zones in GCP. Which Cloud DNS feature should they configure to forward queries from on-premises to GCP?

Question 26mediummultiple choice
Review the full subnetting walkthrough →

A company is using VPC Network Peering between two VPCs. They want to ensure that routes for a specific subnet in VPC A are exported to VPC B. However, VPC B should not export its routes to VPC A. What peering configuration should they set?

Question 27hardmultiple choice
Open the full VLAN trunking answer →

A company is using Partner Interconnect with a 2 Gbps VLAN attachment. They notice that throughput is only about 500 Mbps during peak hours. They have verified that the on-premises link is not saturated. What is the most likely cause?

Question 28mediummulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is planning to connect multiple VPCs in different projects to a common on-premises network using a hub-and-spoke topology. They want to use Network Connectivity Center (NCC). Which TWO components are required to set up this topology?

Question 29hardmulti select
Read the full VPN explanation →

A company wants to set up a hybrid network with HA VPN between an on-premises network and GCP. They need a 99.99% SLA. Which THREE conditions must be met to achieve this SLA?

Question 30mediummulti select
Read the full DNS explanation →

A network engineer needs to design a DNS architecture for a hybrid cloud environment. The requirements: on-premises hosts must resolve GCP private zone names, and GCP instances must resolve on-premises DNS names. Which TWO Cloud DNS features should they use?

Question 31easymultiple choice
Review the full subnetting walkthrough →

A company is creating a new VPC to host a set of microservices on Compute Engine. The network architect wants to minimize operational overhead and allow automatic subnet creation as new regions are added. Which VPC mode should be used?

Question 32mediummultiple choice
Review the full routing breakdown →

An organization has two VPCs, VPC-A and VPC-B, in the same project. They need to allow communication between instances in these VPCs without using the public internet. The solution must support dynamic routes and be non-transitive. What should they configure?

Question 33mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is planning to connect their on-premises data center to Google Cloud using a Dedicated Interconnect. They require 20 Gbps of total bandwidth and want to achieve the highest SLA. What is the minimum number of 10 Gbps connections needed?

Question 34hardmultiple choice
Open the full BGP breakdown →

A company uses Cloud Router with BGP for dynamic routing between on-premises and GCP. They need to ensure that a specific subnet in GCP is preferred over a less specific learned route from on-premises. Which BGP attribute should they adjust on the Cloud Router?

Question 35easymultiple choice
Read the full DNS explanation →

A company wants to use Cloud DNS to resolve DNS queries from their on-premises network for a private zone that contains internal GCP resource names. They do not want to manage DNS servers on-premises. Which Cloud DNS feature should they use?

Question 36mediummultiple choice
Review the full subnetting walkthrough →

An organization has multiple VPCs in different projects that need to share subnets to create a common network segment. They want central control over network administration while allowing individual project teams to deploy resources. Which approach should they use?

Question 37mediummultiple choice
Open the full BGP breakdown →

A company is designing a hybrid network using HA VPN with two external IP VPN gateways and four IKEv2 tunnels with BGP dynamic routing. They want to maintain connectivity during a zonal failure. What is the minimum number of Cloud VPN gateways needed in GCP?

Question 38hardmultiple choice
Review the full subnetting walkthrough →

A network engineer needs to create a private Google Kubernetes Engine (GKE) cluster with a secondary IP range for pods and another for services. They must ensure the pod CIDR does not conflict with any VPC subnets or on-premises ranges. Which step is essential during cluster creation?

Question 39easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company needs to connect multiple on-premises sites and cloud VPCs in a hub-and-spoke topology using a fully managed service. Which Google Cloud service should they use?

Question 40mediummultiple choice
Read the full VPN explanation →

An organization uses Classic VPN with static routing to connect to GCP. They now need to add a new subnet in GCP and ensure on-premises traffic can reach it without manual updates. What should they do?

Question 41hardmultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is planning a hybrid connectivity solution with 200 Gbps total bandwidth between their data center and Google Cloud. They need the highest SLA and lowest latency. Which combination of services would meet these requirements?

Question 42mediummultiple choice
Read the full DNS explanation →

A company wants to resolve DNS queries from their on-premises DNS servers for a private zone hosted in Cloud DNS. They also need GCP resources to resolve on-premises hostnames. Which combination of Cloud DNS features should they configure?

Question 43mediummulti select
Review the full subnetting walkthrough →

A company is designing a Shared VPC environment with a host project and several service projects. Which two steps are required to allow a service project team to create Compute Engine instances with internal IP addresses from a shared subnet?

Question 44hardmulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company uses VPC Network Peering between VPC-A (project X) and VPC-B (project Y). They want resources in VPC-A to reach resources in VPC-B, but also need VPC-A to reach an on-premises network connected to VPC-B via Dedicated Interconnect. Which two steps must be configured?

Question 45mediummulti select
Read the full VPN explanation →

A company is designing IP address plans for multiple VPCs that will be connected via VPC Network Peering and to an on-premises network via HA VPN with dynamic routing. Which three practices should be followed to avoid IP address conflicts?

Question 46easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A startup is creating a new VPC for their production environment. They want to minimize management overhead and plan to use multiple regions. Which VPC type should they choose?

Question 47easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization wants to connect two VPCs in different projects so that they can communicate using private IPs. The connection must not be transitive. Which solution meets these requirements?

Question 48mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is planning a hybrid cloud architecture with GCP. They need a dedicated, high-bandwidth connection from their on-premises data center to GCP with 99.99% SLA and the ability to scale beyond 10 Gbps. Which connection type should they choose?

Question 49mediummultiple choice
Open the full BGP breakdown →

You are configuring Cloud Router for BGP sessions with an on-premises router. You need to ensure that the on-premises network can reach Google Cloud services using the advertiser’s IP addresses. Which option should you configure on the Cloud Router?

Question 50mediummultiple choice
Review the full subnetting walkthrough →

An organization uses Shared VPC with a host project and multiple service projects. They want to allow a service project team to create Compute Engine instances using a specific subnet, but not manage other subnets. Which IAM role should they grant at the subnet level?

Question 51mediummultiple choice
Read the full VPN explanation →

A company has a GKE cluster with pods and services that need to communicate with on-premises resources over a VPN. The on-premises firewall requires the source IP of the pods to be from a specific range. Which secondary IP ranges should be configured on the VPC subnet?

Question 52mediummultiple choice
Read the full DNS explanation →

You are designing DNS resolution for a hybrid cloud. On-premises DNS servers must resolve GCP private VM hostnames, and GCP VMs must resolve on-premises hostnames. Which Cloud DNS feature should you use?

Question 53easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company needs to connect multiple VPCs in different projects and regions to a common hub VPC for centralized inspection. They want to avoid complex mesh peering configurations. Which service should they use?

Question 54hardmultiple choice
Read the full VPN explanation →

A company has two VPCs (Prod and Dev) that are peered. Both VPCs have routes to an on-premises network via separate Cloud VPN tunnels. The on-prem network has routes to both VPCs. The Dev VPC recently added a subnet that overlaps with an on-prem subnet. What is the likely impact on the Prod VPC?

Question 55hardmultiple choice
Open the full VLAN trunking answer →

An organization uses Dedicated Interconnect with VLAN attachments in multiple regions. They need to ensure that traffic from one region to another flows over the interconnect backbone instead of the internet. Which configuration is required?

Question 56hardmultiple choice
Read the full VPN explanation →

You are configuring an HA VPN tunnel between GCP and on-premises. The on-premises VPN device only supports IKEv1 and static routing. Which of the following is true regarding this setup?

Question 57easymultiple choice
Read the full DNS explanation →

A company wants to resolve DNS queries for a private zone (e.g., example.internal) from multiple service projects using the same host project's Cloud DNS private zone. Which feature should they use?

Question 58mediummulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

Which TWO statements are true about VPC Network Peering? (Choose 2)

Question 59mediummulti select
Read the full VPN explanation →

Which THREE are valid considerations when planning IP address ranges for VPCs that will be connected via VPC Peering and Cloud VPN? (Choose 3)

Question 60hardmulti select
Read the full VPN explanation →

A company is setting up HA VPN between GCP and on-premises. They want 99.99% SLA. Which TWO configurations are required? (Choose 2)

Question 61easymultiple choice
Review the full subnetting walkthrough →

A startup is setting up their first GCP VPC. They want minimal manual configuration and need subnets in multiple regions. Which VPC creation mode should they use, and why?

Question 62easymultiple choice
Review the full subnetting walkthrough →

An organization needs to connect two VPCs in different projects so that all subnets can communicate using internal IPs, but the connection must not be transitive (i.e., VPC A cannot use VPC B's connection to reach VPC C). Which GCP networking feature should they use?

Question 63mediummultiple choice
Review the full subnetting walkthrough →

A company has a GKE cluster that needs to be accessed by pods and services. The cluster is deployed in a VPC with a primary subnet 10.0.0.0/16. To avoid IP exhaustion, they want to use separate IP ranges for pods and services. Which approach should they take?

Question 64mediummultiple choice
Open the full VLAN trunking answer →

An enterprise is planning a Dedicated Interconnect connection to GCP. They require 99.99% availability and expect to use multiple VLAN attachments. What is the minimum number of 10 Gbps links and VLAN attachments needed to meet the availability goal?

Question 65hardmultiple choice
Open the full BGP breakdown →

A network engineer is configuring HA VPN between an on-premises network and GCP. They have created two external VPN gateways in GCP (one per region) and two Cloud Routers. How many IKEv2 tunnels and BGP sessions are required to achieve the 99.99% SLA?

Question 66easymultiple choice
Read the full DNS explanation →

A company uses Cloud DNS to manage their domain example.com. They want to resolve queries for example.com from their on-premises DNS servers without transferring the zone. Which Cloud DNS feature should they use?

Question 67mediummultiple choice
Read the full VPN explanation →

A company has two VPCs (Production and Development) that are peered. The Development VPC has a custom route to an on-premises network via a VPN tunnel. They want the Production VPC to automatically learn this route. What must be configured on the VPC peering?

Question 68hardmultiple choice
Open the full BGP breakdown →

An engineer configures a Cloud Router with BGP to advertise a custom learned route for 10.0.0.0/8 to an on-premises router. The on-premises router also receives the same prefix from another path with a lower MED. Which route will the on-premises router prefer?

Question 69mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company needs to connect multiple branch offices to GCP using Partner Interconnect. They need at least 99.9% availability and bandwidth between 50 Mbps and 10 Gbps. Which type of Partner Interconnect should they choose?

Question 70mediummultiple choice
Review the full subnetting walkthrough →

An organization wants to design IP addresses for their GCP VPC that will be peered with an on-premises network using 10.0.0.0/8. Which subnet IP range should they avoid to prevent overlap?

Question 71hardmultiple choice
Review the full subnetting walkthrough →

A company uses Shared VPC with a host project and several service projects. They want to allow only a specific team to create subnets in the host project, and another team to use those subnets in their service projects. Which IAM roles should be assigned?

Question 72mediummultiple choice
Read the full DNS explanation →

A company has multiple VPCs in different projects that need to resolve DNS names across projects. They want a centralized DNS architecture without transferring zone ownership. Which Cloud DNS feature should they implement?

Question 73mediummulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is using Network Connectivity Center (NCC) to connect multiple on-premises sites and GCP VPCs in a hub-and-spoke topology. Which TWO statements about NCC are correct?

Question 74hardmulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization needs to design a hybrid connectivity solution with 99.99% availability for a mission-critical application. They have a co-location facility near a GCP region. Which THREE components are required to meet this SLA?

Question 75easymulti select
Read the full DNS explanation →

A developer wants to configure Cloud DNS for split-horizon DNS where internal queries resolve to private IPs and external queries resolve to public IPs. Which TWO steps should they take?

Question 76easymultiple choice
Review the full subnetting walkthrough →

A startup is deploying its first application on Google Cloud and needs to create a VPC network. They want to avoid manual subnet planning and prefer that Google automatically creates subnets in each region as they expand. Which VPC type should they choose?

Question 77mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization wants to connect its on-premises data center to Google Cloud using Dedicated Interconnect. They require 99.99% availability SLA. Which configuration meets this requirement?

Question 78hardmultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company has two VPC networks in the same project: VPC-A (10.0.0.0/16) and VPC-B (10.0.0.0/16). They want to establish VPC Network Peering between them. What is the outcome?

Question 79mediummultiple choice
Open the full BGP breakdown →

An engineer needs to configure a Cloud Router for a VPN tunnel to an on-premises network. The on-premises BGP ASN is 64512. Which ASN should the engineer assign to the Cloud Router?

Question 80easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

Which Google Cloud service allows you to create a hub-and-spoke topology for connecting on-premises networks and VPCs?

Question 81mediummultiple choice
Read the full DNS explanation →

A company wants to resolve DNS queries from their on-premises network for Google Cloud private zones (e.g., example.internal) without duplicating DNS data. Which Cloud DNS feature should they use?

Question 82hardmultiple choice
Open the full BGP breakdown →

An organization is migrating a legacy application to GCP. The application requires static routing and does not support BGP. Which VPN option should they use?

Question 83mediummultiple choice
Review the full subnetting walkthrough →

A company uses Shared VPC to grant separate teams access to subnets in a host project. They want to allow Team A to create VM instances in subnet-1, but not delete the subnet itself. Which IAM role should be granted to Team A on subnet-1?

Question 84easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

Which IP address type in Google Cloud can communicate with the internet but is not reachable from the internet?

Question 85hardmultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An engineer is troubleshooting a VPC Network Peering connection between VPC-A and VPC-B. They have verified that the peering is active. However, an instance in VPC-A cannot reach an instance in VPC-B using its internal IP. Both VPCs have firewall rules allowing the traffic. What is the most likely cause?

Question 86mediummultiple choice
Read the full DNS explanation →

A company needs to resolve DNS queries for a private zone (e.g., corp.example.com) from multiple GCP projects that are not in the same organization. Which Cloud DNS feature should they use?

Question 87mediummultiple choice
Open the full BGP breakdown →

An organization wants to use Cloud Router with BGP to advertise a specific on-premises subnet (10.0.1.0/24) to its GCP VPC. Which BGP attribute should they use to influence route selection if multiple paths exist?

Question 88mediummulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is planning a hybrid connectivity strategy between their on-premises data center and GCP. They require at least 99.9% availability and are open to using a third-party service provider. Which TWO options meet these requirements? (Choose TWO.)

Question 89hardmulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization wants to isolate development and production environments using separate VPC networks within the same project. They need the development VPC to have access to a shared service, such as a Cloud SQL instance, which resides in a separate project. Which THREE actions are required to achieve this? (Choose THREE.)

Question 90mediummulti select
Read the full DNS explanation →

A company has multiple GCP projects that need to resolve DNS queries for a private zone (e.g., example.internal) that is hosted in a central project. They want to avoid copying zone data. Which TWO features can be used to achieve this? (Choose TWO.)

Question 91mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company wants to connect two VPCs in different GCP projects so that they can communicate using internal IP addresses. The VPCs have overlapping IP ranges. Which approach allows connectivity without changing existing IP addresses?

Question 92easymultiple choice
Open the full BGP breakdown →

An engineer needs to set up a VPN between an on-premises network and GCP. The on-premises VPN device does not support BGP and can only support static routing. Which VPN solution should the engineer choose?

Question 93hardmultiple choice
Read the full DNS explanation →

An organization has multiple VPCs in different projects that need to resolve DNS names across projects. They want to use Cloud DNS without creating a separate managed zone for each VPC. Which feature should they use?

Question 94mediummultiple choice
Open the full BGP breakdown →

A company has a Dedicated Interconnect connection with a VLAN attachment in their GCP VPC. They want to use BGP to exchange routes with their on-premises router. Which GCP resource must be configured to establish the BGP session?

Question 95easymultiple choice
Review the full subnetting walkthrough →

Which VPC type allows you to specify custom IP ranges and regions for subnets during creation, and does not automatically create subnets in every region?

Question 96mediummultiple choice
Open the full BGP breakdown →

An engineer is designing a hybrid network with a 10 Gbps Dedicated Interconnect. They require 99.99% availability for the connection. What is the minimum number of VLAN attachments and BGP sessions recommended?

Question 97hardmultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company has a Shared VPC with a host project and several service projects. They want to allow a service project's Network Engineer to create and manage Cloud Load Balancers, but not modify other networking resources in the shared VPC. Which IAM role should be granted at the service project level?

Question 98easymultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization wants to connect multiple on-premises sites to multiple VPCs in GCP using a hub-and-spoke model. Which GCP service provides a centralized hub for managing such connectivity?

Question 99mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company has a GKE cluster with pods and services that need IP addresses. They want to plan IP address space to avoid overlapping with on-premises networks. Which GCP feature allows reserving separate IP ranges for GKE pods and services?

Question 100hardmultiple choice
Review the full subnetting walkthrough →

An engineer is troubleshooting a VPC Network Peering connection between two VPCs. The peering is established, but traffic from VPC A to VPC B is not reaching a specific subnet. Both VPCs have custom routes. What is the most likely cause?

Question 101mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company needs a hybrid connectivity solution with a bandwidth of 500 Mbps and a 99.9% SLA. They do not have a presence in a colocation facility that supports Dedicated Interconnect. Which GCP service should they use?

Question 102easymultiple choice
Read the full DNS explanation →

Which Cloud DNS zone type is used to resolve DNS names for resources within a VPC network, and is not accessible from the internet?

Question 103mediummulti select
Open the full BGP breakdown →

A company is designing hybrid connectivity between on-premises and GCP. The on-premises network has multiple VPN gateways that support BGP. They require high availability with an SLA of 99.99% and want to use Cloud VPN. Which TWO configurations are required? (Choose two.)

Question 104hardmulti select
Review the full subnetting walkthrough →

A company uses Shared VPC with a host project and multiple service projects. They want to grant a team in a service project the ability to create and manage firewall rules that apply to the shared VPC's subnets. Which THREE IAM roles or permissions are needed? (Choose three.)

Question 105mediummulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An engineer needs to plan IP address ranges for a new GCP environment that will connect to an on-premises network via Dedicated Interconnect. The on-premises network uses 10.0.0.0/8. The GCP VPC must support GKE pods and services and future expansion. Which THREE best practices should the engineer follow? (Choose three.)

Question 106easymultiple choice
Review the full subnetting walkthrough →

A company wants to create a new VPC for a production environment. They need predictable IP addresses and want to avoid any automatic subnet creation. Which type of VPC should they use?

Question 107mediummultiple choice
Review the full subnetting walkthrough →

An organization has multiple GCP projects that need to share a common network infrastructure. They want to centralize network administration in a single project while allowing service projects to create their own resources in shared subnets. Which networking approach should they use?

Question 108mediummultiple choice
Review the full subnetting walkthrough →

A company is setting up VPC peering between two VPCs. They need the peered VPC to be able to reach the entire subnets of their VPC, including those that may be added in the future. Which configuration is required?

Question 109hardmultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization is planning a hybrid connectivity setup between their on-premises data center and GCP. They require a 99.99% SLA and want to use a single physical connection at 10 Gbps. Which connectivity option should they choose?

Question 110mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company needs to connect multiple on-premises sites and multiple GCP VPCs in a hub-and-spoke topology using Google Cloud. Which service provides a centralized hub for managing such connectivity?

Question 111mediummultiple choice
Open the full BGP breakdown →

A team is configuring a Cloud Router for a Dedicated Interconnect VLAN attachment. They need to set up BGP sessions. Which of the following is a required parameter when creating a BGP peer on the Cloud Router?

Question 112hardmultiple choice
Open the full BGP breakdown →

An organization has a hybrid network with multiple BGP sessions between on-premises and GCP. They want to influence outbound traffic from GCP to prefer a specific path. Which BGP attribute should they adjust on the Cloud Router?

Question 113easymultiple choice
Read the full DNS explanation →

A company wants to run a DNS resolution service for their hybrid cloud environment. They need on-premises servers to resolve GCP private VM hostnames, and GCP VMs to resolve on-premises hostnames. Which Google Cloud service should they use?

Question 114mediummultiple choice
Read the full VPN explanation →

An engineer is planning IP address ranges for two VPCs that will be connected via VPC peering. One VPC uses 10.1.0.0/16 and the other uses 10.2.0.0/16. They also plan to use HA VPN to an on-premises network using 10.0.0.0/8. Which IP range assignment could cause a conflict?

Question 115easymultiple choice
Review the full subnetting walkthrough →

A developer needs to create a subnet for GKE pods that will be used by a cluster. They need to specify a secondary IP range for pods. What is the purpose of the 'purpose' field when creating a subnet?

Question 116hardmultiple choice
Read the full VPN explanation →

A company is using a Classic VPN with static routing to connect to GCP. They need to add a new subnet in GCP and make it reachable from on-premises without manual configuration changes on-premises. What is the limitation of Classic VPN in this scenario?

Question 117mediummultiple choice
Read the full DNS explanation →

An organization wants to use Cloud DNS to resolve queries for a custom domain 'example.internal' across multiple projects in the same organization. They have a private zone in project A and want project B to be able to resolve records in that zone. Which feature should they use?

Question 118mediummulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization needs to connect three GCP VPCs (VPC-A, VPC-B, VPC-C) so that all VPCs can communicate with each other. They want a solution that is transitive and does not require full mesh peering. Which TWO approaches meet these requirements?

Question 119hardmulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is designing a hybrid network using Dedicated Interconnect. They want to achieve a 99.99% SLA for availability. Which THREE configurations are required to meet this SLA?

Question 120mediummulti select
Open the full VLAN trunking answer →

An engineer is configuring a Cloud Router for a Dedicated Interconnect VLAN attachment. They want to control which on-premises subnets are advertised to GCP. Which TWO methods can they use?

Question 121easymultiple choice
Review the full routing breakdown →

A company wants to connect two VPCs in different GCP projects so that they can exchange traffic using internal IP addresses. They do not need centralized management or transitive routing between the VPCs. Which GCP networking feature should they use?

Question 122mediummultiple choice
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

An organization is planning a hybrid network between an on-premises data center and Google Cloud. They require a dedicated, high-bandwidth connection with 99.99% availability SLA and the ability to scale up to 100 Gbps. They have a co-location facility that is connected to a Google Cloud region. Which connectivity option should they choose?

Question 123mediummulti select
Review the full subnetting walkthrough →

A company uses Shared VPC to centralize network management. The host project contains subnets for production and development environments. Which two statements accurately describe the capabilities of Shared VPC? (Choose TWO.)

Question 124hardmulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company has two VPCs in the same project: vpc-a (10.0.0.0/8) and vpc-b (10.0.0.0/8). They plan to peer these VPCs using VPC Network Peering. Which two prerequisites are required for the peering to work? (Choose TWO.)

Question 125mediummulti select
Open the full BGP breakdown →

An organization is designing a hybrid connectivity architecture using Cloud Router and BGP. They need to advertise a specific prefix from an on-premises network to GCP, and they want to control the route priority. Which two BGP features should they configure? (Choose TWO.)

Question 126mediummulti select
Read the full DNS explanation →

A company wants to resolve DNS queries from their on-premises network for a privately hosted zone in Google Cloud (e.g., example.internal). They also want on-premises DNS servers to resolve GCP internal VM hostnames. Which two Cloud DNS features should they implement? (Choose TWO.)

Question 127hardmulti select
Open the full VLAN trunking answer →

A company is migrating workloads to Google Cloud and wants to use Cloud Interconnect for low-latency connectivity. They have two on-premises locations and need to connect to multiple GCP regions. Which two statements are true about using VLAN attachments with Dedicated Interconnect? (Choose TWO.)

Question 128easymulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is designing a VPC for a multi-tier web application. They need to ensure that the web servers can be reached from the internet, but the database servers should only be accessible from the web servers. Which three components should they use to achieve this? (Choose THREE.)

Question 129mediummulti select
Read the full VPN explanation →

A company is setting up HA VPN to connect an on-premises network to a single GCP region. They want to achieve 99.99% SLA. Which three steps are required? (Choose THREE.)

Question 130hardmulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company uses Network Connectivity Center (NCC) to connect multiple on-premises sites and VPCs. They have a hub in us-central1 and spokes including two on-premises networks and three VPCs. Which two statements about NCC are accurate? (Choose TWO.)

Question 131easymulti select
Read the full Designing, Planning, and Prototyping a GCP Network explanation →

A company is planning IP address ranges for a new VPC that will be peered with an existing VPC (10.1.0.0/16) and connected to an on-premises network (172.16.0.0/12). Which three considerations should they follow to avoid IP overlap? (Choose THREE.)

Practice tests

Scored 10-question sessions with instant feedback and explanations.

PCNE Practice Test 1 — 25 Questions→PCNE Practice Test 2 — 25 Questions→PCNE Practice Test 3 — 25 Questions→PCNE Practice Test 4 — 25 Questions→PCNE Practice Test 5 — 25 Questions→PCNE Practice Exam 1 — 20 Questions→PCNE Practice Exam 2 — 20 Questions→PCNE Practice Exam 3 — 20 Questions→PCNE Practice Exam 4 — 20 Questions→Free PCNE Practice Test 1 — 30 Questions→Free PCNE Practice Test 2 — 30 Questions→Free PCNE Practice Test 3 — 30 Questions→PCNE Practice Questions 1 — 50 Questions→PCNE Practice Questions 2 — 50 Questions→PCNE Exam Simulation 1 — 100 Questions→

Practice by domain

Each domain maps to a weighted exam section. Focus on the domain where you are weakest.

Configuring Network ServicesImplementing Hybrid InterconnectivityManaging, Monitoring, and Optimising Network OperationsDesigning, Planning, and Prototyping a GCP NetworkImplementing VPC InstancesImplementing network securityImplementing a Virtual Private Cloud

Practice by scenario

Filter questions by type — troubleshooting, exhibit, drag-and-drop, PBQ, ACLs, OSPF, and more.

Browse scenarios→

Continue studying

All Designing, Planning, and Prototyping a GCP Network setsAll Designing, Planning, and Prototyping a GCP Network questionsPCNE Practice Hub