Book Image

Professional Cloud Architect – Google Cloud Certification Guide

By : Konrad Cłapa, Brian Gerrard
Book Image

Professional Cloud Architect – Google Cloud Certification Guide

By: Konrad Cłapa, Brian Gerrard

Overview of this book

Google Cloud Platform (GCP) is one of the leading cloud service suites and offers solutions for storage, analytics, big data, machine learning, and application development. It features an array of services that can help organizations to get the best out of their infrastructure. This comprehensive guide covers a variety of topics specific to Google's Professional Cloud Architect official exam syllabus and guides you in using the right methods for effective use of GCP services. You'll start by exploring GCP, understanding the benefits of becoming a certified architect, and learning how to register for the exam. You'll then delve into the core services that GCP offers such as computing, storage, and security. As you advance, this GCP book will help you get up to speed with methods to scale and automate your cloud infrastructure and delve into containers and services. In the concluding chapters, you'll discover security best practices and even gain insights into designing applications with GCP services and monitoring your infrastructure as a GCP architect. By the end of this book, you will be well versed in all the topics required to pass Google's Professional Cloud Architect exam and use GCP services effectively.

Related Content you might be interested in

Current Title:

Small book image
Professional Cloud Architect – Google Cloud Certification Guide
Konrad Cłapa | Brian Gerrard
Oct, 2019 | 520 pages
No titles found
Table of Contents (26 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Section 1: Introduction to GCP
Section 1: Introduction to GCP
2
GCP Cloud Architect Professional
GCP Cloud Architect Professional
The benefits of being a certified architect
Registering for the exam
What to expect from the exam
Some tips
Summary
Further reading
3
Getting Started with Google Cloud Platform
Getting Started with Google Cloud Platform
Introducing the cloud
Understanding GCP
Summary
Further reading
4
Google Cloud Platform Core Services
Google Cloud Platform Core Services
Computing and hosting services
Storage services
Networking services
Big data services
ML services
Identity services
Summary
Further reading
5
Section 2: Managing, Designing, and Planning a Cloud Solution Architecture
Section 2: Managing, Designing, and Planning a Cloud Solution Architecture
6
Working with Google Compute Engine
Working with Google Compute Engine
Deploying our first GCE instance
Deployment options
Instance templates and instance groups
Autoscaling
Autohealing
Quotas and limits
IAM roles
Pricing
Summary
Further reading
7
Managing Kubernetes Clusters with Google Kubernetes Engine
Managing Kubernetes Clusters with Google Kubernetes Engine
An introduction to microservices
Containers
Docker
Kubernetes
Google Kubernetes Engine
Summary
Further reading
8
Exploring Google App Engine as a Compute Option
Exploring Google App Engine as a Compute Option
App Engine components
Choosing the right location
Working with App Engine
Environment types
Deploying an App Engine application
Versions
Splitting traffic
Migrating traffic
Firewall rules
Settings
Scaling
Cron jobs
Memcache
IAM
Quotas and limits
Pricing
Summary
Further reading
9
Running Serverless Functions with Google Cloud Functions
Running Serverless Functions with Google Cloud Functions
Main Cloud Functions characteristics
Use cases
Runtime environments
Types of Cloud Functions
Events
Triggers
Other considerations
Deploying Cloud Functions
IAM
Quotas and limits
Pricing
Cloud Run
Summary
Further reading
10
Networking Options in GCP
Networking Options in GCP
Exploring GCP networking
Understanding Virtual Private Cloud
Load balancing
NAT
Hybrid connectivity
DNS
Firewall rules
Private access
Summary
Further reading
11
Exploring Storage Options in GCP - Part 1
Exploring Storage Options in GCP - Part 1
Choosing the right storage option
Understanding Cloud Storage
Understanding Cloud Datastore
Understanding Cloud SQL
Summary
Further reading
12
Exploring Storage Options in GCP - Part 2
Exploring Storage Options in GCP - Part 2
Cloud Spanner
Bigtable
Summary
Further reading
13
Analyzing Big Data Options
Analyzing Big Data Options
End-to-end big data solution
Cloud Pub/Sub
Cloud Dataflow
BigQuery
Dataproc
Cloud IoT Core
Additional considerations
Summary
Further reading
14
Putting Machine Learning to Work
Putting Machine Learning to Work
An introduction to AI and ML
The seven steps of ML
Learning models
GCP ML options
TensorFlow
Cloud ML Engine
Pretrained ML models
Dialogflow
AutoML
Summary
Further reading
15
Section 3: Designing for Security and Compliance
Section 3: Designing for Security and Compliance
16
Security and Compliance
Security and Compliance
Introduction to security
Cloud Identity
Resource Manager
Identity and Access Management (IAM)
Firewall rules and load balancers
Cloud Security Scanner
Monitoring and logging
Encryption
Industry regulations
Additional security services
Summary
Further reading
17
Section 4: Managing Implementation
Section 4: Managing Implementation
18
Google Cloud Management Options
Google Cloud Management Options
Using APIs
Google Cloud Shell
The GCP SDK
Cloud Deployment Manager
Pricing Calculator
Additional things to consider
Summary
Further reading
19
Section 5: Ensuring Solution and Operations Reliability
Section 5: Ensuring Solution and Operations Reliability
20
Monitoring Your Infrastructure
Monitoring Your Infrastructure
Technical requirements
Introduction to Stackdriver
Configuring Stackdriver
Stackdriver Monitoring
Stackdriver Logging
APM
Error Reporting
Summary
Further reading
21
Section 6: Exam Focus
Section 6: Exam Focus
22
Case Studies
Case Studies
Understanding how to approach exam case studies
What are they looking for in the case studies?
Additional case studies
Summary
Further reading
23
Test Your Knowledge
Test Your Knowledge
Mock test 1
Mock test 2
24
Assessments
Assessments
Answers to Mock Test 1
Answers to Mock Test 2
25
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Firewall rules

A firewall is either a hardware or software device that filters network traffic that's passing through it. This filtering can be done based on many conditions, such as source, target IPs, protocol, or ports. It allows you to secure your network from unwanted access.

The firewall rules allow you to control traffic flow to and from VM-based instances. Firewall rules work independent of the VM operating system and are always enforced if put in an enabled state. VPC acts as a distributed firewall that leverages micro-segmentation. This means that the firewall rules are enforced per virtual machine, even if the machines reside in the same network. The firewall rules are constructed of the following components:

  • Ingress (inbound) firewall rules:
    • Priority 0: 65545 with a default value of 1000
    • Action: allow or deny
    • Enforcement: enabled or disabled
    • Target (destination...
Previous Section
End of Section 8
Next Section