Misc

Question 1

What is Cloud Memorystore?

Answer 1

in memory cache service (managed Redis Service)

Question 2

What are some key points of Cloud Memorystore ? (5)

Answer 2

1. Managed Redis service for caching frequently used data
2. Sub-millisecond access
3. Can be configured for high availability
4. Can be used with Compute Engine, App Engine and Kubernetes Engine
5. 1GB to 300 GB of memory

Question 3

What is Cloud Firestore?

Answer 3

Managed NoSQL database service designed for highly scalable web and mobile apps.

Question 4

What are some key points of Cloud Firestore? (3)

Answer 4

1. Uses the document data model
2. Designed for storing, synchronizing and querying data across distributed applications like mobile apps.
3. Supports transactions and provides multi-regional replication

Question 5

What is Cloud Filestore?

Answer 5

Shared file system for use with Compute Engine and Kubernetes Engine

Question 6

What are some key points of Cloud Filestore? (4)

Answer 6

1. Based on NFS
2. Suitable for applications that require operating system-like file access
3. exists independently of the VMs or applications that access those files
4. can support a high number of IO operations per second
5. variable storage capacity

Question 7

What is Cloud Armor?

Answer 7

It delivers defense at scale against infrastructure and application DDoS attacks.

Question 8

What are the key points of Cloud Armor? (5)

Answer 8

1. allow or restrict access based on IP
2. predefined rules to counter cross-site scripting attacks
3. counter SQL injection
4. restrict access based on geolocation of incoming traffic
5. define rules at level 3 (network) and level 7 (application)

Question 9

What is Cloud CDN?

Answer 9

a Content Delivery Network - allows low latency response by caching content on a number of servers around the world.

Question 10

What is Cloud Interconnect?

Answer 10

a service for connecting existing networks to GCP

Question 11

What are three key points of Cloud Interconnect?

Answer 11

1. traffic between your on-premise network and your VPC doesn’t traverse the public internet
2. two options dedicated and partnered
3. standard Google VPN services can be used if you don’t mind using the public internet

Question 12

What are the two options for Cloud Interconnect, and what are they different?

Answer 12

1. Dedicated - direct access
   a direct connection is maintained between an on-premise or hosted data center and a Google colocation facility
2. Partnered - peered
   a third party network provider provides connectivity between company’s data center and google.

Question 13

What is Cloud SDK?

Answer 13

a command line interface for managing GCP resources.

Question 14

What client libraries exist for Cloud SDK?

Answer 14

Java, Python, Node.js, Ruby, Go, .NET and PHP

Question 15

What is Cloud Trace?

Answer 15

a distributed tracing system for collecting latency data from an application

Question 16

Key points of Cloud Trace?

Answer 16

1. shows where applications are spending their time (bottlenecks)
2. traces are generated when Cloud Trace is called from an application
3. you can create reports that filter trace data according to report criteria

Question 17

What is Cloud Status?

Answer 17

provides status information on the services that are a part of GCP
The dashboard lists services and uses icons to display their statuses

Question 18

What is Cloud AutoML?

Answer 18

allows a developer with no experience to develop machine learning tools

Question 19

What is Cloud Machine Learning Engine?

Answer 19

for building and deploying scalable machine learning systems

Question 20

What is Cloud Natural Language Processing?

Answer 20

for analyzing human language and extracting information from text

Question 21

What is Cloud Vision?

Answer 21

an image analysis platform

Question 22

Billing account key points? (5)

Answer 22

1. store info on how to pay for resources used.
2. associated with one or more projects
3. all projects must have a billing account associated with it.
4. can have similar structure to resource hierarchy
5. can be exported to BigQuery or Cloud Storage file (CSV or JSON)

Question 23

What are the two types of billing accounts?

Answer 23

1. self-service : paid by debit, credit or bank account automatically
2. invoiced - invoices sent to customers

Question 24

What are the 4 roles associated with billing accounts and what are their permissions?

Answer 24

1. Billing Account Creator - can create new self-service billing accounts
2. Billing Account Admin - manages billing accounts but cannot create them
3. Billing Account User - allows user to link projects to a billing account
4. Billing Account Viewer - view billing account cost and transactions

Question 25

Billing budgets and alerts - key points (5)

Answer 25

1. you can be sent a notice when a certain percentage of your budget has been spent in a month
2. that amount can be a set amount or based on the previous month’s amount
3. the three default percentages are 50%, 90% and 100%, but you can add more.
4. alert will be sent via email, but can also be sent to Cloud Pub/Sub
5. Since more than one project can be associated with a billing account, the alert amount needs to take into account the amount spent on all projects in the account

Question 26

Block Storage key points (6)

Answer 26

1. uses fixed size blocks (4kb and up)
2. available on disks attached to a VM
3. persistent - exists independently of VM
4. ephemeral - exists only while VM is running
5. faster than object storage
6. used by File system and databases

Question 27

What is Cloud Dataprep?

Answer 27

allows exploration and preparation of data for analysus

Question 28

How are gcloud commands formatted?

Answer 28

1. start with a group to indicate a resource (e.g compute)
2. followed by a subgroup to indicate what type of group resource you are working with (e.g instances)
3. after a subgroup, usually a verb and then parameters

gcloud compute instances create [instance name] –zone us-central1a

Question 29

What are the three components of the GCP resource hierarchy?

Answer 29

1. Organization
2. Folder
3. Project

Question 30

Key points of an organization

Answer 30

1. it’s the root of the hierarchy
2. typically responds to a company or organization
3. to create you need to use G Suite or Cloud Identity
4. a single Cloud Identity is associated with at most one organization
5. when G Suite or Cloud Identity creates a billing account, GCP creates an organization resource

Question 31

Key points of a folder resource

Answer 31

1. an organization contains folders
2. a folder can contain projects or other folders
3. folders typically built around services provided by projects and/or the company’s internal structure (departments)

Question 32

Key points of a project

Answer 32

1. projects are where we create resources and use GCP services
2. anyone with the resourcemanager.projects.create IAM permission can create a project (this permission is given to everyone by default)
3. organizations have a project quota which can be increased by contacting google

Question 33

What management tools does GCP have?

Answer 33

1. Stackdriver - collects metrics, logs and event data
2. Monitoring - extends Stackdriver by collecting performance data from GCP and external services
3. Logging - store, analyze and alert on log data from GCP and AWS
4. Error Reporting - aggregates crash information in a centralized interface
5. Trace - captures latency data
6. Debugger - inspect the state of running code, inject commands, view stack variables
7. Profiler - collect CPU and memory utilization

Question 34

Networking in GCP key points (3)

Answer 34

1. GCP can have internal and external addresses
2. Your internal GCP network is defined as a VPC
   - internal addresses are only accessible from your VPC
   - external addresses are available from the internet
3. External addresses can be assigned to a device for a long time (static) or only while the VM is running and released when the VM is stopped (ephemeral)

Question 35

Organization Policy Service key points

Answer 35

1. controls access to an organization’s resources
2. lets you specify limits on the ways resources can be used
3. defined in terms of constraints on a resource (boolean)
   - allow or deny a set of values
   - deny a value and its child values
   - allow all allowed values
   - deny all values
4. can define policies with constraints and attach it to an object in the resource hierarchy
5. policies are inherited and cannot be overwritten by objects lower in the hierarchy
6. policies are managed through Organization Policies in IAM & admin
7. multiple policies can be in effect for a folder or project

Question 36

What is preemptible?

Answer 36

It means that the machine in question could be shut down at any time if the resources it is consuming are needed elsewhere. This is a much cheaper option.

Question 37

What is a service account?

Answer 37

A service account can be assigned to an application so that the application can run without giving users access to the underlying resources. (e.g giving the service account database access so that it can run queries for users without giving users access to the database)

Question 38

Key points of a service account

Answer 38

1. Sometimes treated as a resource and sometimes treated as an identity.
2. Two types, user manages and GCP managed
3. Users can create up to 100 service accounts per project
4. GCP automatically creates some service accounts when certain products are created
5. service accounts can be managed as a group of accounts at the project level or at the individual account level

Question 39

Key points of a VM

Answer 39

1. a Virtual Machine is an abstraction of a physical server which is essentially a program that emulates a physical server and provides CPU, memory storage and other services you would find on a typical physical server
2. it is run within a security-hardened hypervisor
   - it runs on windows or linux
   - can run multiple OSes while keeping them isolated from each other.
   - each instance of a guest OS is a VM instance
3. they are predefined or customizable