Google Cloud Platform (GCP) General Information

Question 1

What is Pub/Sub?

Answer 1

It is a fully managed real-time messaging service that allows you to send and receive messages between independent applications (AWS equivalent is SQS?)
It uses asynchronous communications which decouples the sender from the receiver.

Question 2

When transferring data to GCP from an on-premise location, should you use gsutil or Cloud Transfer Service?

Answer 2

In this case, gsutil should be used.

Question 3

When transferring data to GCP from another cloud service provider, should you use gsutil or Cloud Transfer Service?

Answer 3

In this case, use Storage Transfer Service.

Question 4

A network can belong to how many projects?

Answer 4

One.

Question 5

True or False:

Instances attached to separate networks in the same project must use their external IP addresses to communicate.

Answer 5

True.
Each network has its own firewall controlling access to the instances within it. The only way for instances in the separate networks to communicate is through the firewalls, which means they must use their external IP addresses.

Question 6

What are considered global resources?

Answer 6

A global resource is a resource that is accessible by another resource, in any zone or region, within the same project.
Examples include: virtual machine images, snapshots of persistent disks, instance templates (unless they include resources that are not available in all regions and zones), firewalls, and routes to name a few.

Question 7

What is Google Compute Engine (GCE)?

Answer 7

It is GCP’s virtual machine service. Provides scalable and customizable virtual machines with persistent storage.
Falls under the Compute category.

Question 8

What is Google AppEngine?

Answer 8

It is a fully managed Platform as a Service for applications and back-ends for applications. It is serverless.
Falls under the Compute category.

Question 9

What is Kubernetes Engine?

Answer 9

It is a service for creating, deploying, and managing Kubernetes clusters, which are used to deploy, manage and monitor containerized applications. It can also deploy the additional hardware resources needed by your containerized applications, such as storage, databases, compute and memory it may require.
Falls under the Compute category.

Question 10

What is Cloud Functions?

Answer 10

Event-driven serverless compute platform. GCP’s equivalent of AWS Lambdas
Falls under the Compute category.

Question 11

What is Knative?

Answer 11

It is a set of components to create modern, Kubernetes-native cloud-based software. Knative provides a set of middleware components that are essential to build modern, source-centric, and container-based applications that can run anywhere: on premises, in the cloud, or even in a third-party data center.
Falls under the Compute category.

Question 12

What is Container Security?

Answer 12

Secure your container environment on GCP.

Falls under the Compute category.

Question 13

What is Cloud Storage?

Answer 13

Object storage with global edge-caching. GCP’s equivalent of AWS S3.
Falls under Storage category.

Question 14

What is Persistent Disks?

Answer 14

Reliable, high-performance block storage for virtual machine instances. Multiple virtual machines can use a single persistent disk.
Falls under the Storage category.

Question 15

What is Data Transfer?

Answer 15

Command line tools for developers to transfer data over the network.
Falls under the Storage category.

Question 16

What is Transfer Appliance?

Answer 16

Rackable storage server for shipping large volumes of data to Google Cloud.
Falls under the Storage category.

Question 17

Cloud Storage Transfer Service

Answer 17

Transfer data between cloud storage services such as AWS S3 and Google Cloud Storage.
Falls under the Storage category.

Question 18

What is BigQuery Data Transfer Service?

Answer 18

Fully managed data import service for BigQuery.

Falls under the Storage category.

Question 19

What is Virtual Private Cloud (VPC)?

Answer 19

Managed networking functionality for your Cloud Platform resources.
Falls under the Networking category.

Question 20

What is Cloud Load Balancing?

Answer 20

High performance, scalable load balancing on Google Cloud Platform.
Falls under the Networking category.

Question 21

What is Cloud Armor?

Answer 21

Protects your services against DoS and web attacks.

Falls under Networking category.

Question 22

What is Cloud CDN (Content Delivery Network)?

Answer 22

Low-latency, low-cost content delivery on GCP using edge locations around the world where data is cached to reduce latency.
Falls under the Networking category.

Question 23

What is Cloud Interconnect?

Answer 23

Connect directly to GCP’s network edge.

Falls under the Networking category.

Question 24

What is Cloud DNS?

Answer 24

GCP’s Domain Name System service.

Falls under the Networking category.

Question 25

What is Network Telemetry?

Answer 25

A service that provides in-depth network telemetry information to keep your services secure.
Falls under the Networking category.

Question 26

What is Cloud SQL?

Answer 26

A fully managed MySQL and PostgreSQL database service.

Falls under the Database category.

Question 27

What is Cloud BigTable?

Answer 27

A petabyte-scale, fully managed NoSQL database service for large analytical and operational workloads (i.e. a big data storage solution). Used by HBase compatible big data applications like Hadoop. It stores the data that gets used by Hadoop.
Falls under the Database category.

Question 28

What is Cloud Spanner?

Answer 28

A relational database service that offers the best of both relational and non-relational databases. It is strongly consistent like a relational database, but distributed over more than one location, and therefore highly available and fault-tolerant, like a no-SQL database. Also highly scalable like a no-SQL database.
Falls under the Database category.

Question 29

What is Cloud Datastore?

Answer 29

It is is a highly-scalable NoSQL database for your web and mobile applications.
Falls under the Database category.

Question 30

What is Cloud SDK?

Answer 30

Command-line interface for Google Cloud Platform products and services.
Falls under Developer Tools.

Question 31

What is Container Registry?

Answer 31

Store, manage, and secure your Docker container images.

Falls under Developer Tools.

Question 32

What is Cloud Build?

Answer 32

A service that enables you to continuously build, test, and deploy applications.
Falls under Developer Tools.

Question 33

What is Cloud Source Repositories?

Answer 33

A single place for your team to store, manage, and track code. Essentially it is a GIT repository.
Falls under Developer Tools.

Question 34

What is Stackdriver?

Answer 34

Monitoring logging, diagnostics (debugging, error reporting, tracing) and management tool for services, containers, applications, and infrastructure.
Falls under the Monitoring category.

Question 35

What is (Stackdriver) Monitoring?

Answer 35

Monitoring for applications on GCP and AWS.

Falls under the Monitoring category.

Question 36

What is (Stackdriver) Service Monitoring?

Answer 36

Stackdriver Service Monitoring is for Istio and Google App Engine services.
Falls under the Monitoring category.

Question 37

What is (Stackdriver) Logging?

Answer 37

It is for logging applications running on Google Cloud Platform and Amazon Web Services

Question 38

What is (Stackdriver) Error Reporting?

Answer 38

Identifies and helps you understand application errors.

Question 39

What is (Stackdriver) Trace?

Answer 39

Find performance bottlenecks in production. Identifies latency in your application and “trace” them to their source.

Question 40

What is (Stackdriver) Debugger?

Answer 40

Investigate code behavior in production.

Question 41

What is (Stackdriver) Profiler?

Answer 41

Records and analyzes resource usage (i.e. CPU, RAM, etc.) by an application to help the developer fix poorly written code.

Question 42

What is Cloud Deployment Manager?

Answer 42

Create and manage cloud resources with simple templates

Question 43

What is Cloud Console?

Answer 43

Your integrated Google Cloud Platform management console

Question 44

What is Cloud Shell?

Answer 44

An Ubuntu Linux Command-line management from any browser.

Question 45

Cloud Console Mobile App

Answer 45

Manage Google Cloud Platform services from your Android or iOS device.

Question 46

What is Cloud IoT Core?

Answer 46

A fully managed service to easily and securely connect, manage, and ingest data from globally dispersed devices.

Question 47

What is Cloud Endpoints?

Answer 47

Develop, deploy and manage APIs on any Google Cloud backend.

Falls under the API Management category.

Question 48

What is BigQuery?

Answer 48

A fully managed, highly scalable data warehouse for analytics, with built-in ML.

Question 49

What is Cloud DataFlow?

Answer 49

Fully managed service for real-time stream and batch data processing

Question 50

What is Cloud DataProc?

Answer 50

Fully managed Apache Spark and Hadoop service.

Question 51

What is Cloud DataLab?

Answer 51

It is an interactive tool created to explore, analyze, transform and visualize data and build machine learning models on Google Cloud Platform.

Question 52

What is Cloud Dataprep?

Answer 52

It is a fully managed cloud data service to explore, clean, and prepare data for analysis.

Question 53

What is Cloud Composer?

Answer 53

It is a fully managed workflow orchestration service that empowers you to author, schedule, and monitor pipelines that span across clouds and on-premises data centers.

Question 54

What is Cloud ML?

Answer 54

It is a suite of machine learning products that enables developers with limited machine learning expertise to train high-quality models specific to their business needs, by leveraging Google’s state-of-the-art transfer learning, and Neural Architecture Search technology.

Question 55

What is Cloud TPU?

Answer 55

It is a service that allows you access a Tensor Processing Unit (TPU) over the Internet. TPUs are ASICs built by Google to process Machine Learning data.

Question 56

What is Cloud Machine Learning Engine?

Answer 56

It is a managed service that enables developers and data scientists to build and bring superior machine learning models to production

Question 57

What is Cloud IAM?

Answer 57

It is Identity and Access Management. A service that provides the capability to make user accounts, assign permissions and roles to users and resources.

Question 58

What is Cloud Key Management Service?

Answer 58

Manage encryption keys on GCP

Question 59

What is Cloud Identity-Aware Proxy?

Answer 59

Use identity and context to guard access for applications deployed on GCP

Question 60

What is Resource Manager?

Answer 60

Google Cloud Platform provides resource containers such as Organizations, Folders, and Projects, that allow you to group and hierarchically organize other Cloud Platform resources. This hierarchical organization lets you easily manage common aspects of your resources such as access control and configuration settings.

Question 61

What is Security Key Enforcer?

Answer 61

Enforce the use of security keys to help prevent phishing.

Question 62

What is Cloud Security Scanner?

Answer 62

Automatically scan your App Engine apps.

Question 63

What is Cloud Data Loss and Prevention API?

Answer 63

Automatically discover and redact sensitive data everywhere

Question 64

What protocols do GCP Networking allow?

Answer 64

TCP, UDP, and ICMP

Question 65

What protocols do GCP Firewalls allow?

Answer 65

ICMP, RDP and SSH

Question 66

True or False.

GCP Firewall rules can deny ingress traffic on certain ports.

Answer 66

False.
GCP Firewall rules can only allow certain types of traffic into your network (ingress rules) on certain ports. GCP does not have explicit “deny” rules for ingress traffic. By not allowing a certain type of traffic, you are implicitly denying it.

Question 67

What is a Service Account?

Answer 67

It is an identity for your programs to use to authenticate and gain access to GCP APIs and resources. It is a machine-to-machine account.
Service accounts authenticate applications running on your virtual machine instances to other GCP services.

Question 68

What are the 4 GCP Storage options?

Answer 68

Multi-regional, Regional, Nearline, and Coldline

Question 69

What is durability for GCS?

Answer 69

The durability is 99.999999999% for all storage class types.

Question 70

What is the availability for Multi-regional Storage?

Answer 70

99.95%

Question 71

What is the availability for Regional Storage?

Answer 71

99.90%

Question 72

What is the availability for Nearline Storage?

Answer 72

99.00%

Question 73

What is the availability for Coldine Storage?

Answer 73

99.00%

Question 74

What is the use case for Multi-regional Storage?

Answer 74

Web content, streaming videos, mobile apps

Question 75

What is the use case for Regional Storage?

Answer 75

In-region data analytics, transcoding

Question 76

What is the use case for Nearline Storage?

Answer 76

Backups, long-tail content

Question 77

What is the use case for Coldline Storage?

Answer 77

Archiving, disaster recovery

Question 78

What is the use case for Cloud Storage?

Answer 78

To store files, pictures, binary large objects (blobs). This is also called object storage. It is just like a typical file systems with folders that have access permissions to them.

Question 79

What is the use case for Cloud SQL?

Answer 79

Relational database service on GCP. Can be used for No-ops? SQL database in the cloud

Question 80

What is the use case for Datastore?

Answer 80

NoSQL database for applications. Use for structured data from AppEngine apps.

Question 81

What is the use case for BigTable?

Answer 81

NoSQL database for big data applications. No-ops?, high throughput, scalable, flattened data

Question 82

What is the use case for BigQuery

Answer 82

Interactive SQL querying fully managed warehouse

Question 83

Command to list your projects

Answer 83

gcloud projects list

Question 84

Command to set the region for your project

Answer 84

gcloud config set compute/region “region name”

where “region name” is us-east1 or us-central1 or europe-west1

Question 85

Command to set your default project

Answer 85

gcloud config set project myProjects

Question 86

Command to set the zone for your project

Answer 86

gcloud config set compute/zone “zone name”

where “zone name” is us-central1-c, europe-west1-a

Question 87

Command to list the zones where the compute service is available (i.e. us-central1-a, us-central1-b, europe-west1-a)

Answer 87

gcloud compute zone list

Question 88

Command to secure shell into a virtual machine or compute instance

Answer 88

gcloud compute ssh “virtual-machine-name”

You can’t have spaces in the name so you must have it all one word or put dashes in

Question 89

Command to list the regions where you can do Cloud Functions (AWS equivalent of Lambdas)

Answer 89

gcloud functions region list

Question 90

Command to list all the URI (Uniform Resource Identifier) in a zone

Answer 90

gcloud compute zones list –uri

Question 91

Command to list a project’s DNS info

Answer 91

gcloud dns projects-info describe

Question 92

Command to provide detailed information about a project

Answer 92

gcloud compute project-info describe –project

Question 93

With respect to billing for virtual networking instances, what are you not billed for?

Answer 93

Traffic ingress (into the network from the Internet).
VM to VM traffic within a single zone.
Traffic to GCP services, although limits apply.

Question 94

With respect to billing for virtual networking instances, what are you billed for?

Answer 94

Traffic egress (out to the Internet).
From one region to another (North America to Europe),.
Rates will vary depending on whether data is going to one part of the same region to another, or to another continent

Question 95

What is a Bastion Host?

Answer 95

It is a virtual machine that act as an entry point to the GCP network from an external computer/network. It can serve as a NAT Gateway or for a site to site VPN.

Question 96

What is a managed instance group?

Answer 96

It is a group of virtual machine instances that created using a single instance template which contain all of the configuration info on the machines (i.e. # of CPUs, storage, RAM, etc.). As a result, you control/manage this group of instances as a single unit. Two types are Zonal and Regional. Useful for recovery after a failure, scaling per user needs, migrating instance.

Question 97

True or False:

An instance template is always a global resource, not bound to a zone or region.

Answer 97

False.
While instance templates are not bound to zones or regions, some GCP resources are. Therefore, if you include a zonal or regional resource in your instance template, it becomes bound to the specific zone(s) or region(s) where that service is available.

Question 98

What is an Unmanaged Instance group?

Answer 98

It is a group of virtual machine instances that are not all the same which you can arbitrarily add or remove from a group. Unmanaged Instances do not offer autoscaling, rolling update support, or use of instance templates. Google recommends against their usage.

Question 99

What is the use case for an Unmanaged Instance

Answer 99

Use only for applying load balancing to your pre-existing configurations or to groups of dissimilar instances.

Question 100

What are the 4 virtual machine disk types

Answer 100

Persistent disk HDD, Persistent disk SSD, Local SSD disk, and RAM disk

Question 101

True or False:

It is okay to use a virtual machine with a local SSD.

Answer 101

False.

Local SSDs cannot be backed up and will just be discarded. Snapshots are not available for SSDs.

Question 102

What is BigQuery?

Answer 102

BigQuery is a data warehouse for data analysis. It’s built to run large SQL statements. It supports streaming ingestion of data, which offers real-time analysis.

Question 103

What is DataFlow?

Answer 103

DataFlow is a service for transforming and enriching data in stream and batch modes.