Question-43: Network Intelligence Center gives users a centralized location from which to manage the visibility of their Google Cloud networks, as well as monitor and troubleshoot those networks. A unified interface for managing the observability, monitoring, and troubleshooting of Google Cloud networks. Reduce the possibility of service interruptions and make sure security and compliance are met. Your organisation makes use of the Firewall Insights tool that is available in the Google Network Intelligence Center. Compute Engine instances are protected by a number of firewall rules that you have configured. You need to do an analysis of how effective the firewall ruleset currently in use is. You may have noticed that there are no log rows to show in the Google Cloud Console's Firewall Insights page when you first accessed that page. What steps should you take to diagnose and fix the problem?
A. Turn on the flow logging for the Virtual Private Cloud (VPC).
B. If you wish to monitor certain firewall rules, turn on the Firewall Rules Logging feature.
C. Check to see whether the compute.networkAdmin Identity and Access Management (IAM) role has been given to your user account.
D. Install the Google Cloud SDK and ensure that the command line output does not include any Firewall logs.
Correct Answer
Get All 340 Questions and Answer for Google Professional Cloud Architect
: 2 Explanation: You have the option to turn firewall rule logging on or off whenever you write a new rule for the firewall. By default, it is configured to be turned off. You can enable logging for a specific firewall rule while you are creating the rule, or you can enable it later while editing that rule if you want to get firewall insights or view the logs for that specific rule. Turn on the Firewall Rules Logging feature for the rules of the firewall that you wish to monitor. You have to make sure that the logging of firewall rules is turned on while you are creating them or ed.