Google Cloud Platform (GCP) General Information Flashcards Preview

Google Cloud Platform Certified Associate Engineer > Google Cloud Platform (GCP) General Information > Flashcards

Flashcards in Google Cloud Platform (GCP) General Information Deck (103):

What is Pub/Sub?

It is a fully managed real-time messaging service that allows you to send and receive messages between independent applications (AWS equivalent is SQS?)
It uses asynchronous communications which decouples the sender from the receiver.


When transferring data to GCP from an on-premise location, should you use gsutil or Cloud Transfer Service?

In this case, gsutil should be used.


When transferring data to GCP from another cloud service provider, should you use gsutil or Cloud Transfer Service?

In this case, use Storage Transfer Service.


A network can belong to how many projects?



True or False:
Instances attached to separate networks in the same project must use their external IP addresses to communicate.

Each network has its own firewall controlling access to the instances within it. The only way for instances in the separate networks to communicate is through the firewalls, which means they must use their external IP addresses.


What are considered global resources?

A global resource is a resource that is accessible by another resource, in any zone or region, within the same project.
Examples include: virtual machine images, snapshots of persistent disks, instance templates (unless they include resources that are not available in all regions and zones), firewalls, and routes to name a few.


What is Google Compute Engine (GCE)?

It is GCP's virtual machine service. Provides scalable and customizable virtual machines with persistent storage.
Falls under the Compute category.


What is Google AppEngine?

It is a fully managed Platform as a Service for applications and back-ends for applications. It is serverless.
Falls under the Compute category.


What is Kubernetes Engine?

It is a service for creating, deploying, and managing Kubernetes clusters, which are used to deploy, manage and monitor containerized applications. It can also deploy the additional hardware resources needed by your containerized applications, such as storage, databases, compute and memory it may require.
Falls under the Compute category.


What is Cloud Functions?

Event-driven serverless compute platform. GCP's equivalent of AWS Lambdas
Falls under the Compute category.


What is Knative?

It is a set of components to create modern, Kubernetes-native cloud-based software. Knative provides a set of middleware components that are essential to build modern, source-centric, and container-based applications that can run anywhere: on premises, in the cloud, or even in a third-party data center.
Falls under the Compute category.


What is Container Security?

Secure your container environment on GCP.
Falls under the Compute category.


What is Cloud Storage?

Object storage with global edge-caching. GCP's equivalent of AWS S3.
Falls under Storage category.


What is Persistent Disks?

Reliable, high-performance block storage for virtual machine instances. Multiple virtual machines can use a single persistent disk.
Falls under the Storage category.


What is Data Transfer?

Command line tools for developers to transfer data over the network.
Falls under the Storage category.


What is Transfer Appliance?

Rackable storage server for shipping large volumes of data to Google Cloud.
Falls under the Storage category.


Cloud Storage Transfer Service

Transfer data between cloud storage services such as AWS S3 and Google Cloud Storage.
Falls under the Storage category.


What is BigQuery Data Transfer Service?

Fully managed data import service for BigQuery.
Falls under the Storage category.


What is Virtual Private Cloud (VPC)?

Managed networking functionality for your Cloud Platform resources.
Falls under the Networking category.


What is Cloud Load Balancing?

High performance, scalable load balancing on Google Cloud Platform.
Falls under the Networking category.


What is Cloud Armor?

Protects your services against DoS and web attacks.
Falls under Networking category.


What is Cloud CDN (Content Delivery Network)?

Low-latency, low-cost content delivery on GCP using edge locations around the world where data is cached to reduce latency.
Falls under the Networking category.


What is Cloud Interconnect?

Connect directly to GCP’s network edge.
Falls under the Networking category.


What is Cloud DNS?

GCP's Domain Name System service.
Falls under the Networking category.


What is Network Telemetry?

A service that provides in-depth network telemetry information to keep your services secure.
Falls under the Networking category.


What is Cloud SQL?

A fully managed MySQL and PostgreSQL database service.
Falls under the Database category.


What is Cloud BigTable?

A petabyte-scale, fully managed NoSQL database service for large analytical and operational workloads (i.e. a big data storage solution). Used by HBase compatible big data applications like Hadoop. It stores the data that gets used by Hadoop.
Falls under the Database category.


What is Cloud Spanner?

A relational database service that offers the best of both relational and non-relational databases. It is strongly consistent like a relational database, but distributed over more than one location, and therefore highly available and fault-tolerant, like a no-SQL database. Also highly scalable like a no-SQL database.
Falls under the Database category.


What is Cloud Datastore?

It is is a highly-scalable NoSQL database for your web and mobile applications.
Falls under the Database category.


What is Cloud SDK?

Command-line interface for Google Cloud Platform products and services.
Falls under Developer Tools.


What is Container Registry?

Store, manage, and secure your Docker container images.
Falls under Developer Tools.


What is Cloud Build?

A service that enables you to continuously build, test, and deploy applications.
Falls under Developer Tools.


What is Cloud Source Repositories?

A single place for your team to store, manage, and track code. Essentially it is a GIT repository.
Falls under Developer Tools.


What is Stackdriver?

Monitoring logging, diagnostics (debugging, error reporting, tracing) and management tool for services, containers, applications, and infrastructure.
Falls under the Monitoring category.


What is (Stackdriver) Monitoring?

Monitoring for applications on GCP and AWS.
Falls under the Monitoring category.


What is (Stackdriver) Service Monitoring?

Stackdriver Service Monitoring is for Istio and Google App Engine services.
Falls under the Monitoring category.


What is (Stackdriver) Logging?

It is for logging applications running on Google Cloud Platform and Amazon Web Services


What is (Stackdriver) Error Reporting?

Identifies and helps you understand application errors.


What is (Stackdriver) Trace?

Find performance bottlenecks in production. Identifies latency in your application and "trace" them to their source.


What is (Stackdriver) Debugger?

Investigate code behavior in production.


What is (Stackdriver) Profiler?

Records and analyzes resource usage (i.e. CPU, RAM, etc.) by an application to help the developer fix poorly written code.


What is Cloud Deployment Manager?

Create and manage cloud resources with simple templates


What is Cloud Console?

Your integrated Google Cloud Platform management console


What is Cloud Shell?

An Ubuntu Linux Command-line management from any browser.


Cloud Console Mobile App

Manage Google Cloud Platform services from your Android or iOS device.


What is Cloud IoT Core?

A fully managed service to easily and securely connect, manage, and ingest data from globally dispersed devices.


What is Cloud Endpoints?

Develop, deploy and manage APIs on any Google Cloud backend.
Falls under the API Management category.


What is BigQuery?

A fully managed, highly scalable data warehouse for analytics, with built-in ML.


What is Cloud DataFlow?

Fully managed service for real-time stream and batch data processing


What is Cloud DataProc?

Fully managed Apache Spark and Hadoop service.


What is Cloud DataLab?

It is an interactive tool created to explore, analyze, transform and visualize data and build machine learning models on Google Cloud Platform.


What is Cloud Dataprep?

It is a fully managed cloud data service to explore, clean, and prepare data for analysis.


What is Cloud Composer?

It is a fully managed workflow orchestration service that empowers you to author, schedule, and monitor pipelines that span across clouds and on-premises data centers.


What is Cloud ML?

It is a suite of machine learning products that enables developers with limited machine learning expertise to train high-quality models specific to their business needs, by leveraging Google’s state-of-the-art transfer learning, and Neural Architecture Search technology.


What is Cloud TPU?

It is a service that allows you access a Tensor Processing Unit (TPU) over the Internet. TPUs are ASICs built by Google to process Machine Learning data.


What is Cloud Machine Learning Engine?

It is a managed service that enables developers and data scientists to build and bring superior machine learning models to production


What is Cloud IAM?

It is Identity and Access Management. A service that provides the capability to make user accounts, assign permissions and roles to users and resources.


What is Cloud Key Management Service?

Manage encryption keys on GCP


What is Cloud Identity-Aware Proxy?

Use identity and context to guard access for applications deployed on GCP


What is Resource Manager?

Google Cloud Platform provides resource containers such as Organizations, Folders, and Projects, that allow you to group and hierarchically organize other Cloud Platform resources. This hierarchical organization lets you easily manage common aspects of your resources such as access control and configuration settings.


What is Security Key Enforcer?

Enforce the use of security keys to help prevent phishing.


What is Cloud Security Scanner?

Automatically scan your App Engine apps.


What is Cloud Data Loss and Prevention API?

Automatically discover and redact sensitive data everywhere


What protocols do GCP Networking allow?



What protocols do GCP Firewalls allow?



True or False.
GCP Firewall rules can deny ingress traffic on certain ports.

GCP Firewall rules can only allow certain types of traffic into your network (ingress rules) on certain ports. GCP does not have explicit "deny" rules for ingress traffic. By not allowing a certain type of traffic, you are implicitly denying it.


What is a Service Account?

It is an identity for your programs to use to authenticate and gain access to GCP APIs and resources. It is a machine-to-machine account.
Service accounts authenticate applications running on your virtual machine instances to other GCP services.


What are the 4 GCP Storage options?

Multi-regional, Regional, Nearline, and Coldline


What is durability for GCS?

The durability is 99.999999999% for all storage class types.


What is the availability for Multi-regional Storage?



What is the availability for Regional Storage?



What is the availability for Nearline Storage?



What is the availability for Coldine Storage?



What is the use case for Multi-regional Storage?

Web content, streaming videos, mobile apps


What is the use case for Regional Storage?

In-region data analytics, transcoding


What is the use case for Nearline Storage?

Backups, long-tail content


What is the use case for Coldline Storage?

Archiving, disaster recovery


What is the use case for Cloud Storage?

To store files, pictures, binary large objects (blobs). This is also called object storage. It is just like a typical file systems with folders that have access permissions to them.


What is the use case for Cloud SQL?

Relational database service on GCP. Can be used for No-ops? SQL database in the cloud


What is the use case for Datastore?

NoSQL database for applications. Use for structured data from AppEngine apps.


What is the use case for BigTable?

NoSQL database for big data applications. No-ops?, high throughput, scalable, flattened data


What is the use case for BigQuery

Interactive SQL querying fully managed warehouse


Command to list your projects

gcloud projects list


Command to set the region for your project

gcloud config set compute/region “region name”

where "region name" is us-east1 or us-central1 or europe-west1


Command to set your default project

gcloud config set project myProjects


Command to set the zone for your project

gcloud config set compute/zone “zone name”

where "zone name" is us-central1-c, europe-west1-a


Command to list the zones where the compute service is available (i.e. us-central1-a, us-central1-b, europe-west1-a)

gcloud compute zone list


Command to secure shell into a virtual machine or compute instance

gcloud compute ssh “virtual-machine-name”

You can’t have spaces in the name so you must have it all one word or put dashes in


Command to list the regions where you can do Cloud Functions (AWS equivalent of Lambdas)

gcloud functions region list


Command to list all the URI (Uniform Resource Identifier) in a zone

gcloud compute zones list --uri


Command to list a project’s DNS info

gcloud dns projects-info describe


Command to provide detailed information about a project

gcloud compute project-info describe --project


With respect to billing for virtual networking instances, what are you not billed for?

Traffic ingress (into the network from the Internet).
VM to VM traffic within a single zone.
Traffic to GCP services, although limits apply.


With respect to billing for virtual networking instances, what are you billed for?

Traffic egress (out to the Internet).
From one region to another (North America to Europe),.
Rates will vary depending on whether data is going to one part of the same region to another, or to another continent


What is a Bastion Host?

It is a virtual machine that act as an entry point to the GCP network from an external computer/network. It can serve as a NAT Gateway or for a site to site VPN.


What is a managed instance group?

It is a group of virtual machine instances that created using a single instance template which contain all of the configuration info on the machines (i.e. # of CPUs, storage, RAM, etc.). As a result, you control/manage this group of instances as a single unit. Two types are Zonal and Regional. Useful for recovery after a failure, scaling per user needs, migrating instance.


True or False:
An instance template is always a global resource, not bound to a zone or region.

While instance templates are not bound to zones or regions, some GCP resources are. Therefore, if you include a zonal or regional resource in your instance template, it becomes bound to the specific zone(s) or region(s) where that service is available.


What is an Unmanaged Instance group?

It is a group of virtual machine instances that are not all the same which you can arbitrarily add or remove from a group. Unmanaged Instances do not offer autoscaling, rolling update support, or use of instance templates. Google recommends against their usage.


What is the use case for an Unmanaged Instance

Use only for applying load balancing to your pre-existing configurations or to groups of dissimilar instances.


What are the 4 virtual machine disk types

Persistent disk HDD, Persistent disk SSD, Local SSD disk, and RAM disk


True or False:
It is okay to use a virtual machine with a local SSD.

Local SSDs cannot be backed up and will just be discarded. Snapshots are not available for SSDs.


What is BigQuery?

BigQuery is a data warehouse for data analysis. It's built to run large SQL statements. It supports streaming ingestion of data, which offers real-time analysis.


What is DataFlow?

DataFlow is a service for transforming and enriching data in stream and batch modes.