Networking in the Google Cloud Platform
This 2-day instructor-led course gives participants a broad study of networking options on Google Cloud Platform. Through presentations, demonstrations, and hands-on labs, learners explore and deploy GCP networking technologies, such as Google Virtual Private Cloud (VPC) networks, subnets, firewalls, interconnection among networks, load balancing, Cloud DNS, and Cloud CDN. The course also covers common network design patterns and automated deployment using Cloud Deployment Manager.
This course is intended for the following participants:
- Network Engineers and Network Admins who are either using Google Cloud Platform or planning to do so
- Individuals who want to be exposed to software-defined networking solutions in the cloud.
To get the most out of this course, participants should have:
- Completed Google Cloud Platform Fundamentals: Core Infrastructure or have equivalent experience
- Clear understanding of the 7-layer OSI model
- Clear understanding of IPv4 addressing
- Prior experience with managing IPv4 routes
This course teaches participants the following skills:
- Configure Google VPC networks, subnets, and routers
- Control administrative access to VPC objects
- Control network access to endpoints in VPCs
- Interconnect networks among GCP projects
- Interconnect networks among GCP VPC networks and on-premises or other-cloud networks
- Choose among GCP load balancer and proxy options and configure them
- Use Cloud CDN to reduce latency and save money
- Optimize network spend using Network Tiers
- Deploy networks declaratively using Cloud Deployment Manager
- Design networks to meet common customer requirements
- Configure monitoring and logging to troubleshoot networks problems
Module 1: Different types of VPC objects, Internal DNS, Cloud DNS, IP aliases and VMs with multiple network interfaces.
- Recall that networks belong to projects
- Explain the differences among default, auto, and custom networks
- Create networks and subnets
- Explain how IPv4 addresses are assigned to Compute Engine instances
- Publish domain names using Cloud DNS
- Create Compute Engine instances with IP aliases
- Create Compute Engine instances with multiple virtual network interfaces
Module 2: Control access to VPC Networks, including Cloud Identity and Access Management (Cloud IAM) and firewall rules.
- Outline how IAM policies affect VPC networks
- Control access to network resources using service accounts
- Control access to Compute Engine instances with tag-based firewall rules
Module 3: Share VPC networks across GCP projects using shared VPC and VPC peering.
- Outline the overall workflow for configuring shared VPC
- Differentiate between the IAM roles that allow network resources to be managed
- Configure peering between unrelated VPC networks
- Recall when to use shared VPC and when to use VPC peering
Module 4: Configure the different types of load balancers that are available in GCP and leverage managed instance groups, Cloud Armor, and Cloud CDN.
- Recall the various load balancing services
- Configure Layer 7 HTTP(S) load balancing
- Whitelist and blacklist IP traffic with Cloud Armor
- Cache content with Cloud CDN
- Configure internal load balancing
- Determine which GCP load balancer to use when
Module 5: Connect your infrastructure to GCP using interconnect and peering services.
- Recall the GCP interconnect and peering services available to connect your infrastructure to GCP
- Explain Dedicated Interconnect and Partner Interconnect
- Describe the workflow for configuring a Dedicated Interconnect
- Build a connection over a VPN with Cloud Router
- Determine which GCP interconnect service to use when
- Explain Direct Peering and Partner Peering
- Determine which GCP peering service to use when
Module 6: Optimize your network spend and administer billing in GCP.
- Recognize how networking features are charged for
- Use Network Service Tiers to optimize spend
- Determine which Network Service Tier to use when
- Recall that labels can be used to understand networking spend
Module 7: Automate the deployment of networks using Deployment Manager and launch networking solutions using Cloud Marketplace.
- Explain common network design patterns
- Automate the deployment of networks using Deployment Manager
- Launch networking solutions using Cloud Marketplace
Module 8: Network monitoring and logging features that can help you troubleshoot your GCP network infrastructure.
- Configure uptime checks, alerting policies, and charts for your network services
- Use VPC Flow Logs to log and analyze network traffic behavior