Book Image

Google Cloud for DevOps Engineers

By : Sandeep Madamanchi
Book Image

Google Cloud for DevOps Engineers

By: Sandeep Madamanchi

Overview of this book

DevOps is a set of practices that help remove barriers between developers and system administrators, and is implemented by Google through site reliability engineering (SRE). With the help of this book, you'll explore the evolution of DevOps and SRE, before delving into SRE technical practices such as SLA, SLO, SLI, and error budgets that are critical to building reliable software faster and balance new feature deployment with system reliability. You'll then explore SRE cultural practices such as incident management and being on-call, and learn the building blocks to form SRE teams. The second part of the book focuses on Google Cloud services to implement DevOps via continuous integration and continuous delivery (CI/CD). You'll learn how to add source code via Cloud Source Repositories, build code to create deployment artifacts via Cloud Build, and push it to Container Registry. Moving on, you'll understand the need for container orchestration via Kubernetes, comprehend Kubernetes essentials, apply via Google Kubernetes Engine (GKE), and secure the GKE cluster. Finally, you'll explore Cloud Operations to monitor, alert, debug, trace, and profile deployed applications. By the end of this SRE book, you'll be well-versed with the key concepts necessary for gaining Professional Cloud DevOps Engineer certification with the help of mock tests.

Related Content you might be interested in

Current Title:

Small book image
Google Cloud for DevOps Engineers
Sandeep Madamanchi
Jul, 2021 | 482 pages
Small book image
Cloud Native Automation with Google Cloud Build
Kent Hua | Anthony Bushong
Oct, 2022 | 246 pages
Small book image
Google Cloud Associate Cloud Engineer Certification and Implementation Guide
Wojciech Marusiak | Agnieszka Koziorowska
Sep, 2023 | 606 pages
Small book image
Professional Cloud Architect Google Cloud Certification Guide
Konrad Clapa | Brian Gerrard
Dec, 2021 | 664 pages
Table of Contents (17 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Reviews
1
Section 1: Site Reliability Engineering – A Prescriptive Way to Implement DevOps
Section 1: Site Reliability Engineering – A Prescriptive Way to Implement DevOps
Free Chapter
2
Chapter 1: DevOps, SRE, and Google Cloud Services for CI/CD
Chapter 1: DevOps, SRE, and Google Cloud Services for CI/CD
Understanding DevOps, its evolution, and life cycle
SRE's evolution; technical and cultural practices
Cloud-native approach to implementing DevOps using Google Cloud
Summary
Points to remember
Further reading
Practice test
Answers
3
Chapter 2: SRE Technical Practices – Deep Dive
Chapter 2: SRE Technical Practices – Deep Dive
Defining SLAs
Defining reliability expectations via SLOs
Exploring SLIs
Understanding error budgets
Eliminating toil through automation
Illustrating the impact of SLAs, SLOs, and error budgets relative to SLI
Summary
Points to remember
Further reading
Practice test
Answers
4
Chapter 3: Understanding Monitoring and Alerting to Target Reliability
Chapter 3: Understanding Monitoring and Alerting to Target Reliability
Understanding monitoring
Alerting
Time series
Summary
Points to remember
Further reading
Practice test
Answers
5
Chapter 4: Building SRE Teams and Applying Cultural Practices
Chapter 4: Building SRE Teams and Applying Cultural Practices
Building SRE teams
Incident management
Being on call
Psychological safety
Sharing vision and knowledge and fostering collaboration
Summary
Points to remember
Further reading
Practice test
Answers
6
Section 2: Google Cloud Services to Implement DevOps via CI/CD
Section 2: Google Cloud Services to Implement DevOps via CI/CD
7
Chapter 5: Managing Source Code Using Cloud Source Repositories
Chapter 5: Managing Source Code Using Cloud Source Repositories
Technical requirements
Introducing the key features
One-way sync from GitHub/Bitbucket to CSR
Common operations in CSR
Hands-on lab – integrating with Cloud Functions
Summary
Further reading
Practice test
Answers
8
Chapter 6: Building Code Using Cloud Build, and Pushing to Container Registry
Chapter 6: Building Code Using Cloud Build, and Pushing to Container Registry
Technical requirements
Key terminology (prerequisites)
Understanding the need for automation
Building and creating container images – Cloud Build
Managing build artifacts – Container Registry
Hands-on lab – building, creating, pushing, and deploying a container to Cloud Run using Cloud Build triggers
Summary
Points to remember
Further reading
Practice test
Answers
9
Chapter 7: Understanding Kubernetes Essentials to Deploy Containerized Applications
Chapter 7: Understanding Kubernetes Essentials to Deploy Containerized Applications
Technical requirements
Kubernetes – a quick introduction
Kubernetes cluster anatomy
Kubernetes objects
Scheduling and interacting with Pods
Kubernetes deployment strategies
Summary
Points to remember
Further reading
Practice test
Answers
10
Chapter 8: Understanding GKE Essentials to Deploy Containerized Applications
Chapter 8: Understanding GKE Essentials to Deploy Containerized Applications
Technical requirements
Google Kubernetes Engine (GKE) – introduction
GKE – core features
GKE Autopilot – hands-on lab
Summary
Points to remember
Further reading
Practice test
Answers
11
Chapter 9: Securing the Cluster Using GKE Security Constructs
Chapter 9: Securing the Cluster Using GKE Security Constructs
Technical requirements
Essential security patterns in Kubernetes
Hardening cluster security in GKE
Points to remember
Further reading
Practice test
Answers
12
Chapter 10: Exploring GCP Cloud Operations
Chapter 10: Exploring GCP Cloud Operations
Cloud Monitoring
Cloud Logging
Cloud Debugger
Cloud Trace
Cloud Profiler
Binding SRE and Cloud Operations
Summary
Points to remember
Further reading
Practice test
Answers
13
Mock Exam 1
Total Number of Questions: 50
Answers
14
Mock Exam 2
Total Number of Questions: 50
Answers
Why subscribe?
15
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Leave a review - let other readers know what you think
Appendix: Getting Ready for Professional Cloud DevOps Engineer Certification
Appendix: Getting Ready for Professional Cloud DevOps Engineer Certification
Cloud Deployment Manager
Cloud Tasks
Spinnaker

Points to remember

The following are some important points to remember:

  • GCP service accounts are used if GCP resources must have an identity that is tied to an application or a virtual machine.
  • Kubernetes service accounts are users that are managed by the Kubernetes API.
  • Cloud IAM defines who can view or change the configuration of a GKE cluster and Kubernetes RBAC defines who can view or change Kubernetes objects inside the specific GKE cluster.
  • Workload Identity is used to access Google Cloud services from applications running within GKE. This prevents pods from accessing the Compute Engine metadata server.
  • In RBAC, a Role connects API resources and verbs. An RBAC Role is cluster-wide scoped, while an RBAC ClusterRole is namespace scoped.
  • In RBAC, RoleBindings connect Roles to subjects. A RoleBinding is cluster-wide scoped, while a ClusterRoleBinding is namespace scoped.
  • Every GKE cluster has its own root CA.
  • Pod Security Context and Pod Security...
Previous Section
End of Section 5
Next Section