network-engineer video for you manage a cloud environment that hosts multiple VMs across several VPC networks. These virtual machines require access to internet
You manage a cloud environment that hosts multiple VMs across several VPC networks. These virtual machines require access to internet resources, but—due to strict security policies—they are not allowed to have public IP addresses. To meet this requirement, you intend to use Cloud NAT to provide controlled outbound internet connectivity. Each VPC spans multiple regions and contains several subnets. You want to ensure that only certain subnets are granted internet access through Cloud NAT, while also preventing accidental misconfiguration by other administrators. Your solution should follow Google Cloud best practices . What approach should you take?