In Google Cloud Platform, the Default VPC is created automatically. How many subnets does the Default VPC have and where are they located?
Think about how Google Cloud ensures network availability across regions by default.
The Default VPC includes one subnet in each GCP region, allowing resources in any region to communicate by default.
Which of the following statements correctly describes the default firewall rules applied to the Default VPC in GCP?
Consider the security posture of default firewall rules for internal and external traffic.
The Default VPC includes firewall rules that allow SSH (TCP port 22), RDP (TCP port 3389), and ICMP from the internet (0.0.0.0/0), in addition to all internal traffic within the VPC.
What happens if you delete a subnet from the Default VPC in GCP?
Think about how GCP manages default resources and user modifications.
Deleting a subnet removes only that subnet. The Default VPC and other subnets remain. You can recreate subnets if needed.
Which security risk is most associated with using the Default VPC without modification in a production environment?
Consider what default firewall rules allow and what they do not restrict.
The Default VPC allows outbound internet access by default, which can expose instances to external threats if not properly secured.
In a large organization with multiple teams and projects, what is the best practice regarding the Default VPC and its subnets?
Think about network isolation and security in multi-team environments.
Deleting the Default VPC and creating custom VPCs per team or project allows better isolation, security, and control over network policies.