Architecting with Google Compute Engine Course Series
This course series is designed for cloud solution architects, DevOps engineers, and anyone interested in using Google Cloud to create new solutions or integrate existing systems, application environments, and infrastructure, with a focus on Compute Engine.
Learning Objectives:
- Navigate the course competently
- Learn course downloads
- Recognize and understand the major Google Cloud load balancers
- Know the different Google Cloud Load Balancers that are appropriate per use cases
- Understand autoscaling behavior, policies, its configuration, and metrics
- Configure load balancers and autoscaling to improve performance
INTERCONNECTING NETWORKS
1. What is the purpose of Virtual Private Networking (VPN)?
- It is a method to detect intruders at the edge of a network boundary.
- VPNs are also called access control lists, or ACLs, and they limit network access.
- To enable a secure communication method (a tunnel) to connect two trusted environments through an untrusted environment, such as the Internet. (CORRECT)
- The main purpose is to encrypt data so that it can be stored in an encrypted format.
Correct: VPN employs IPsec to create tunnels over possibly unsafe or dubious networks to facilitate a secure and encrypted connection.
2. Which Google Cloud Interconnect service requires a connection in a Google Cloud colocation facility and provides 10 Gbps per link?
- Direct Peering
- Carrier Peering
- Cloud VPN
- Dedicated Interconnect (CORRECT)
- Partner Interconnect
Correct: True! Dedicated Interconnect requires a connection at a Google Cloud colocation facility, which provides a 10 Gbps per link speed.
3. If you cannot meet Google’s peering requirements, which network connection service should you choose to connect to Google Workspace and YouTube?
- Partner Interconnect
- Dedicated Interconnect
- Carrier Peering (CORRECT)
- Direct Peering
Correct: Indeed! Carrier Peering lets us connect with Google Workspace and YouTube without relying on their standard peering requirements.
4. Which of the following approaches to multi-project networking, uses a centralized network administration model?
- Cloud VPN
- Shared VPC (CORRECT)
- VPC Network Peering
Correct: Indeed! Shared VPC is a centralized approach to networking between multiple projects because all security and network policies are enforced in one dedicated VPC network.
LOAD BALANCING AND AUTOSCALING
1. Which of the following is not a Google Cloud load balancing service?
- Cloud VPN
- Shared VPC (CORRECT)
- VPC Network Peering
Correct: Indeed! Shared VPC, having consolidated security and networking policies in a single designated VPC network, simplifies multi-project networking and makes management more efficient.
2. Which three Google Cloud load balancing services support IPv6 clients?
- TCP proxy load balancing (CORRECT)
- Network load balancing
- Internal load balancing
- HTTP(S) load balancing (CORRECT)
- SSL proxy load balancing (CORRECT)
Correct: Indeed! The TCP proxy load balancing provides capability for even clients from IPv6 and IPv4, making it a fairly flexible mechanism for setting up several network configurations.
Correct: Correct! Absolutely! The load balancing of HTTP(S) is entirely accomplished with clients of both IPv4 and IPv6 and allows the distribution of the traffic without being designated to any of the IP versions.
Correct: It is so! SSL proxy load balancing really facilitates both IPv6 and IPv4 clients for various network configurations.
3. Which of the following are applicable autoscaling policies for managed instance groups?
- CPU utilization (CORRECT)
- Queue-based workload (CORRECT)
- Load balancing capacity (CORRECT)
- Monitoring metrics (CORRECT)
Correct: That’s correct!