Google Cloud Platform Networking: Learn fundamental to advanced GCP network concepts and techniques using real world use cases
- Length: 357 pages
- Edition: 1
- Language: English
- Publisher: Independently published
- Publication Date: 2019-12-18
- ISBN-10: 1677029773
- ISBN-13: 9781677029778
- Sales Rank: #503571 (See Top 100 Books)
NEW 2021 Updated Edition!
Welcome to “Google Cloud Platform – Networking: Beginner to Skilled GCP Network Practitioner in One Book”. As the subtitle conveys this book is a beginners-to-experts comprehensive guide to networking for the Google Cloud Platform. We do not assume any prior networking skills or knowledge so the book is designed for both the beginner in networking as well as those proficient in on-premise networking who want to transfer their skill to the GCP. It is a thorough and comprehensive guide to the entire set of core networking technologies, principles and best practices that you will need to know about for the GCP Networking Certification exam. Nonetheless, this book is not just for those pursuing GCP Networking certification it is also aimed at those wishing to pursue a career in GCP networking. Consequently, it covers not just the exam syllabus but goes into much greater depth and scope through practical examples and relevant networking tips and best practices. The goal is to provide you, the reader, with a deep and wide understanding of GCP networking and its core technologies, techniques and concepts so that you can ultimately call yourself and importantly confidently demonstrate your skills as a proficient GCP network engineer.To that end, we have designed the book into parts: Part 1 is a network primer aimed at the beginner as it serves as an introduction to key generic network concepts that you as a beginner will need to know when we move the focus to specific GCP networking concepts; Part 2, is an introduction to Google’ internal private and global network, the underlying technologies and how it works under the bonnet. This should be of value and interest to readers of all skill levels; Part 3, is all about GCP cloud-specific networking that encompasses; VPC design, planning, deployment, migration, operations and performance monitoring and management. We will study relevant use-case in each chapter to better demonstrate the use of a particular technology and to help solidify a deeper understanding. The final chapter is aimed at those pursuing a career as a GCP network designer or a pre-sales consultant as well as project managers as it concerns Billing. Hence we will take a deep dive into Billing from a network perspective but it is not just an appendix for your everyday reference – it is a comprehensive guide to cost forecasting, monitoring and cost management. Overall, this book can be read cover-to-cover, by individual parts, or as a reference for particular technologies. Take your time to browse the Table of Reference to discover the scope and get a feel for the depth of knowledge within each chapter and topic.
Google Cloud Platform - Networking Introduction Part -1: Networking Primer Chapter -1: Traditional Networking Types of Networks Networking Equipment The Network Stack The TCP Model TCP/IP Model Layers Encapsulation Process Building the Stack Virtual LANS (Vlans) Subnets IP Addressing How subnets came about? Designing Subnets ACls Subnetting IPv4 Network Ports Networking Protocols Routers NAT Network Transmission Protocols HTTP SSL/TLS QUIC SPDY/HTTP-2 Data Centre Infrastructure Models SDN SDN (Software Defined Networking) Network Interconnects: WAN and Metro Technologies What is a VPN? MPLS SD-WAN BGP Part II - Google Cloud Network A Brief History of Google’s Network The 5-steps towards today’s Google Network Google’s SDN Approach Google Cloud Network topology Google Network Tiers Part III - Google Cloud Platform Google Cloud Networking GCP Infrastructure Fundamentals Global Reach How do Google VPC’s differ from a traditional VPC? Legacy Networks and Subnets Types of Networks Primary and Secondary Address Projects, Regions and Zones Why use Regions and Zones? Internal and External IP Addresses Routing Traffic Firewall rules GCP firewall use cases for both egress and ingress GCP – Core Networking Services Network Service Tiers Load Balancing Interconnectivity Cloud NAT Private Google Access Private Access for GCP Services Private Access for GCP Service for On-Prem Google Cloud DNS Cloud DNS Private Zones Cloud DNS Forwarding Bastion Host Network Billing Chapter - 2: Designing the Network Architecture Using Regions and Zones for Redundancy Mapping Cloud resources to Data Centre Elements Traditional Data Centre devices Cloud equivalents to devices Data Centre Network Topologies Cloud equivalent to traditional Networks Data Centre Virtualisation Cloud virtualisation (VLANS) Data Centre Identity Cloud Based Identity Chapter - 3: Shared & Network VPC Sharing a VPC Provisioning a Shared VPC Use Case for Shared VPC Chapter - 4: Network Interconnections The Google Network Cloud VPN VPN Tunnels and Legacy Networks Configuring Cloud VPN Classic and High Availability VPN Cloud Routing Service: Cloud Router Understanding BGP Sessions Configuring Cloud Router and BGP Cloud Direct Interconnect Direct Interconnect Architecture Elements of Dedicated Interconnect Configuring Cloud Interconnect Direct Connection through a Partner Layer 2 connectivity Partner Interconnect Architecture Partner Interconnect Components Provisioning overview Use-Case: sharing hybrid connectivity solutions between Projects Chapter – 5: GCP Routing & Peering Routing in GCP Types of Routes Cloud Routing features Regional and Global Routing Configuring the on-premise router Introducing VPC Peering VPC Network Peering Routing order Importing and exporting custom routes Internal Load Balancing with VPC peers Chapter -6: GCP Load balancing Global Load Balancing Figure 37 HTTP(S) Load Balancing Session Affinity Cross Regional Load Balancing SSL Proxy Load Balancers Regional Load Balancing Network LB Network Load Balancing Internal Load balancing Network Load Balancing with Managed Instance Groups Forwarding Rules Session Affinity Load Balancing Best Practices Instance Groups Securing load balancers Chapter -7: Cloud CDN & Cloud NAT Cloud NAT (Network Address Translation) Cloud NAT benefits Cloud NAT features NAT traversal Cases where NAT is not performed on traffic IP address allocation Estimating the number of NAT ports required Draining NAT IP addresses Cloud NAT with Google Kubernetes Engine Cloud NAT with other GCP services Content Delivery Network (CDN) Network Architecture How CDN Works Google CDN Architecture vs. Tradition CDN Architecture Configuring CDN with Global Load Balancing Creating an Anycast Address Security Chapter -8: Understanding DNS General DNS concepts DNS server types Public zone Private zone Split horizon DNS DNS Server Types: DNS Records Cloud DNS Cloud DNS Concepts Project Managed zones Public zones Registrar Private zones Handling DNS Queries Forwarding zones Peering zones Resource record sets collection Resource record changes Domains, Subdomains, and Delegation DNSSEC DNSKEYs collection VPC name resolution order DNS forwarding limitations DNS server policy Inbound DNS forwarding DNS forwarding zones DNS peering Use cases Private zones and Shared VPC Overlapping zones Query resolution with overlapping zones General access control Access control for managed zones Performance and timing Propagation of changes Chapter – 9: Introduction to the GCP Hierarchy Projects and Folders The Organizational Node Creating a Resource Hierarchy Identity and Access Management (IAM) Permissions Cloud IAM Role Types Primitive Roles Predefined Roles Custom Roles Service Accounts Service Account types Access Scopes Authentication Keys IAM Best Practices Chapter -10: Networking in Containers and Kubernetes Engine An introduction to Containers and Kubernetes What are Containers? Building Containers The Role of Kubernetes Nodes, Pods and Clusters Starting a Deployment Exposing a Deployment Service Groups Kubernetes at work Kubernetes master How are containers organized? Kubernetes Engine Services Kubernetes Deployment Cluster Federations Container Registry GKE Scalability Kubernetes Network overview Types of Chains Networking inside the Cluster Figure 46 Network Namespace Kube-proxy Networking outside the Cluster External Load Balancer Internal Load Balancer HTTP(S) Load Balancer Limiting access among Pods Limiting Access to an External Load Balancer Limiting Access to an HTTP(S) Load Balancer Chapter -11: Network Monitoring and Alerting Monitoring VPC Flow Logs Utilising VPC Flow Logs Use cases VPC Flow Logs collection Record format Log sampling and aggregation Enabling VPC flow logging when you create a subnet Enabling VPC flow logging for an existing subnet Packet Mirroring VPC Packet Mirroring Packet Filtering Policy order Packet collection Using Packer Filtering with VPC Flow Logs Key Characteristics Stackdriver Monitoring Resource Management with Stackdriver Monitoring Uptime checks Groups Securing Stackdriver Monitoring best practices Logging Stackdriver Logging best practices Error Reporting Tracing Debugging Working with Istio Istio for GKE Monitoring Logging Tracing Incident Response Chapter -12: Network Security and Performance Blending Network Security Controls Cloud Security Scanner Network Performance Cloud Performance Tools and Tips Measure for latency Choose the Correct Type of Instance The vCPU vs. On-premise CPU Puzzle Use Private IP Address over External IP Understanding Network Throughput Windows Size Optimisation Google’s Quest to Speed up the Internet SPDY (HTTP-2) QUIC gRPC BBR What is BBR? Benefits for Google Cloud customers Chapter -13: Building HA Robust and Resilient Networks GCP: flexible and cost-effective HTTP load balancer Zone Instance Instance template Managed instance group Autoscaler Cloud SQL Cloud Storage Resilience Health checks Data resilience with Cloud SQL Scalability Scale with autoscaler Handle file uploads Use-case Designing robust systems Understanding types of failures Designing robust systems Handle live migration Distribute your instances Use zone-specific internal DNS names Create groups of instances Use load balancing Use startup and shutdown scripts Back up your data Chapter 14: Network Designs and Best Practices Traditional IT DevOps DevSecOps CloudOps Designing Cloud Networks Pre-work Keep it simple Addresses and subnets VPC Architectures Connecting multiple VPC networks Deploying Party Devices in GCP Hybrid design: connecting an on-premises environment Chapter – 15: Cloud Migrations and Cloud Repatriation Developing a Migration Strategy Building a Cloud Migration Plan Technical Issues Design the VPC Architecture Design the IP Plan Design the Hybrid Connectivity and Routing Design the Hybrid Connectivity Firewall Rules Design the DNS Design Centralised Controls and Shared Resources Simplify Internal Routing via Peering Design the Internal Firewall Rules Perform Workflow Migration How MCE works Manually Migrating Databases Migrating MySQL and PostgreSQL Cloud Repatriation Chapter - 16: Billing Networking Resources GCP Network Billing Network service tier’s geo-locations Premium tier pricing Standard tier pricing VPC Networking Pricing Internet egress rates Load balancing ingress and egress charges User-defined request headers and Google Cloud Armor charges Network Telemetry Traffic through external IP addresses External IP address pricing Determining an IP Address Status CDN Pricing tables Overview Pricing calculator Cache egress Cache fill Simple pricing example Cloud NAT Pricing Dedicated Interconnect Dedicated Interconnect pricing: Pricing example Partner Interconnect Cloud VPN pricing Cloud DNS pricing Pricing table Pricing example Stackdriver Billing Stackdriver pricing overview Logging details Stackdriver Billing examples
Donate to keep this site alive
1. Disable the AdBlock plugin. Otherwise, you may not get any links.
2. Solve the CAPTCHA.
3. Click download link.
4. Lead to download server to download.
