Helion


Szczegóły ebooka

Google Cloud Certified Professional Cloud Network Engineer Guide

Google Cloud Certified Professional Cloud Network Engineer Guide

Maurizio Ipsale, Mirko Gilioli

Kup pozycję na ebookpoint.pl

Google Cloud, the public cloud platform from Google, has a variety of networking options, which are instrumental in managing a networking architecture. This book will give you hands-on experience of implementing and securing networks in Google Cloud Platform (GCP).

You will understand the basics of Google Cloud infrastructure and learn to design, plan, and prototype a network on GCP. After implementing a Virtual Private Cloud (VPC), you will configure network services and implement hybrid connectivity. Later, the book focuses on security, which forms an important aspect of a network. You will also get to grips with network security and learn to manage and monitor network operations in GCP. Finally, you will learn to optimize network resources and delve into advanced networking. The book also helps you to reinforce your knowledge with the help of mock tests featuring exam-like questions.

By the end of this book, you will have gained a complete understanding of networking in Google Cloud and learned everything you need to pass the certification exam.

  • Google Cloud Certified Professional Cloud Network Engineer Guide
  • Contributors
  • About the authors
  • About the reviewer
  • Preface
    • Who this book is for
    • What this book covers
    • To get the most out of this book
    • Download the color images
    • Conventions used
    • Get in touch
    • Share Your Thoughts
  • Section 1: Network Infrastructure
  • Chapter 1: Google Cloud Platform Infrastructure
    • Introducing cloud computing and virtualization
      • What is cloud computing?
      • What is virtualization?
    • Introducing GCP
      • GCPs global infrastructure regions and zones
      • Projects, billing, and quotas
    • Getting started with GCP
      • GCP resource hierarchy
      • Interacting with GCP
    • Understanding virtual machines in the cloud
      • Google Compute Engine
      • VPC overview
      • Overview of Load Balancing, DNS, and CDN
    • Exploring containers in the cloud
      • DevOps concepts and microservice architectures
      • Containerization versus virtualization
      • Container orchestration with Google Kubernetes Engine
    • Summary
    • Further reading
  • Chapter 2: Designing, Planning, and Prototyping a GCP Network
    • Technical requirements
    • Designing the overall network architecture
      • Failover and DR strategy
      • Options for HA
      • DNS strategy in a hybrid cloud environment
      • Choosing an appropriate load-balancing option
      • Optimizing for latency (for example, maximum transmission unit (MTU) size; caches; content delivery network (CDN))
      • Network security design strategy
    • Designing a VPC
      • CIDR range for subnets
      • IP addressing
      • Routes
      • Shared VPC versus VPC Network Peering
      • Firewall rules
    • Designing a hybrid network
      • Cloud Interconnect design (for example, Dedicated versus Partner)
      • Peering options (Direct versus Carrier)
      • IPsec VPN
      • Cloud Router
      • Failover and DR strategy (for example, building HA with BGP using Cloud Router)
    • Designing a container IP addressing plan for GKE
      • Creating scalable GKE clusters
      • IP address planning in GKE
      • Network security design in GKE
    • Summary
  • Chapter 3: Implementing a GCP Virtual Private Cloud (VPC)
    • Technical requirements
    • Configuring VPC networks
      • Configuring VPC resources in GCP
      • SSH and ICMP protocols
      • Configuring static and dynamic routing with Cloud Router
      • Configuring VPC peering
      • Configuring Shared VPC
      • Configuring NAT in Google Cloud
    • Configuring and managing firewall rules
  • Section 2: Network Services and Security
  • Chapter 4: Configuring Network Services in GCP
    • Configuring load balancing
      • HTTP(S) Global Load Balancing
      • Internal load balancing
    • Configuring Cloud Content Delivery Network (CDN)
    • Summary
  • Chapter 5: Implementing Hybrid Connectivity in GCP
    • Technical requirements
    • Configuring Interconnect
      • Dedicated Interconnect connection option
      • Partner Interconnect connection option
    • Configuring a site-to-site IPsec VPN
      • Route-based VPN
      • HA VPN
    • Diving into Cloud Router
      • Cloud Router configuration
      • Static external IP address
      • MED
    • Summary
  • Chapter 6: Implementing Network Security
    • Configuring Identity and Access Management (IAM)
    • Configuring Cloud Armor security policies
    • Configuring a third-party software device (NGFW) insertion into VPC using multiple NICs
      • Configuring networking and security for a third-party virtual appliance
      • Implementing third-party virtual appliances (Compute Engine instances) in a shared VPC environment
      • Implementing routes and firewall rules in a multi-NIC environment
    • Summary
  • Section 3: Network Operations, Management, and Monitoring
  • Chapter 7: Managing and Monitoring Network Operations
    • Logging and monitoring with GCP operations
      • VPC Flow Logs
      • Firewall Rules Logging
      • VPC audit logs
      • Packet Mirroring
      • Summary
  • Chapter 8: Advanced Networking in Google Cloud Platform
    • Google Cloud Traffic Director
    • Understanding Istio and the service mesh
      • Understanding Traffic Director
      • Configuring Traffic Director
    • Configuring the Google Cloud Service Directory
    • Understanding Service Directory and features
    • Configuring Service Directory and DNS
    • Building hub and spoke networks with Network Connectivity Center
      • Understanding Network Connectivity Center in Google Cloud Platform
      • Configuring Network Connectivity Center as a transit hub
    • Summary
  • Chapter 9: Professional Cloud Network Engineer Certification Preparation
    • Why subscribe?
  • Other Books You May Enjoy
    • Packt is searching for authors like you
    • Share Your Thoughts