# Professional-Cloud-Network-Engineer — Question 425

**Type:** multiple_choice
**Topics:** topic_1

## Question

You created a new VPC network named Dev with a single subnet. You added a firewall rule for the network Dev to allow HTTP traffic only and enabled logging.
When you try to log in to an instance in the subnet via Remote Desktop Protocol, the login fails. You look for the Firewall rules logs in Stackdriver Logging, but you do not see any entries for blocked traffic. You want to see the logs for blocked traffic.
What should you do?

## Correct Answer

_See scenario._

## Explanation

I think correct answer should be D.
https://cloud.google.com/blog/products/identity-security/google-cloud-firewall-rules-logging-how-and-why-you-should-use-it

"Since we have implicit ingress and the denial rule is not being logged, we create a “deny all” rule with priority 65534 to capture anything that gets denied"

https://cloud.google.com/vpc/docs/firewall-rules-logging

**Reference:** examtopics_top_comment

---
Source: https://hiexam.net/q/google/Professional-Cloud-Network-Engineer/425  
Practice (tracked): https://hiexam.net/study/Professional-Cloud-Network-Engineer/practice