Your company recently acquired a company that has infrastructure in Google Cloud. Each company has its own Google Cloud organization. Each company is using a Shared Virtual Private Cloud (VPC) to provide network connectivity for its applications. Some of the subnets used by both companies overlap. In order for both businesses to integrate, the applications need to have private network connectivity. These applications are not on overlapping subnets. You want to provide connectivity with minimal re-engineering. What should you do?
A. Set up VPC peering and peer each Shared VPC together.
B. Migrate the projects from the acquired company into your company’s Google Cloud organization. Re-launch the instances in your companies Shared VPC.
C. Set up a Cloud VPN gateway in each Shared VPC and peer Cloud VPNs.
D. Configure SSH port forwarding on each application to provide connectivity between applications in the different Shared VPCs.
Disclaimer
This is a practice question. There is no guarantee of coming this question in the certification exam.
Answer
C
Explanation
A. Set up VPC peering and peer each Shared VPC together.
(VPC peering can’t be established if subnets overlap in the network, even if the applications are not overlapping subnets.)
B. Migrate the projects from the acquired company into your company’s Google Cloud organization. Re-launch the instances in your companies Shared VPC.
(Ruled out. Doesn’t satisfy minimal re-engineering requirement.)
C. Set up a Cloud VPN gateway in each Shared VPC and peer Cloud VPNs.
(https://cloud.google.com/vpc/docs/using-vpc-peering#no_subnet_ip_range_overlap_across_peered_networks
Cloud VPN is another alternative. Because Cloud VPN establishes reachability through managed IPsec tunnels, it doesn’t have the aggregate limits of VPC Network Peering. Cloud VPN uses a VPN Gateway for connectivity and doesn’t consider the aggregate resource use of the IPsec peer.)
D. Configure SSH port forwarding on each application to provide connectivity between applications in the different Shared VPCs.
(Ruled out. Doesn’t satisfy minimal re-engineering requirement.)