🔥 3-day streak
Professional Cloud Security Engineer136 / 152
Question 136 of 152
A financial services company runs sensitive workloads on Compute Engine VMs in a single VPC. The security team wants to ensure that, by default, no VM can initiate outbound connections to the internet or other networks, and that only explicitly approved destinations (a set of partner IP ranges over TCP 443) are reachable. The default VPC egress behavior must be overridden without deleting any implied rules. What is the recommended way to configure this?
Reviewed for accuracy · Report an issueNext question