Networking Options Flashcards
What is Google VPC?
VPC stands for Virtual Private Cloud and is a system used to divide resources into individual systems within a Google Cloud Enviornment. A project can share VPCs or a VPC can be created for each individual project.
How many VPCs can you have per project?
5
What are the default firewall rules within a VPC?
Default rules allow ingress ICMP, RDP and SSH from anywhere
How can you communicate with VMs within a VPC?
VMs created in a VPC will have internal and external IP addresses. This is why it is important that VPCs will not have subnets with overlapping CIDR blocks.
How can you connect two VPCs?
VPCs are connected with VPC peering. Connections only go between two VPCs at a time and not all VPC connections with peering.
What are the limitations of Load Balancing?
They can be global or regional, internal or external, and can include HTTP(S), SSL Proxy, TCP Proxy, Network TCP/UDP, and Internal TCP/UDP jobs
What is the Cloud NAT (Network Address Translation)?
Cloud NAT is a regional self-scaling service that allows VMs internet access without external IPs
What rules does Cloud NAT impose on VMs?
Cloud NAT does not allow inbound traffic and is an alternative to NAT Gateway on Google
What is a VPN?
A regional service that connects an IPsec tunnel and is set up using a Cloud VPN gateway, an on premisis gateway, and 2 tunnels
What kind of connections do Cloud VPN support?
They support static and dynamic routes, however, dynamic routes do require a Cloud Router
What is the bandwidth of a VPN connection?
Bandwidth of VPN connections range from 1.5 to 3 Gbps per tunnel. Higher connections can be achieved by configuring multiple tunnels.
What is Cloud Interconnect?
Layer 2 connectivity method that you purchase to obtain an low latency and high availability between GCP and on prem devices.
What is Peering?
Layer 3 connectivity that provides high availability to Google services and can be done with Google or directly through a partner.
What is Cloud DNS?
A managed service to host DNS records without servers or software that has 100% SLA
What is a firewall?
Something that contains default rules to secure your network
How many subnet ranges can you create when creating your VPC?
You must define one primary range and then optionally up to 5 secondary ranges
What is the project where a VPC created called?
The Host Project
What is a good use for VPC peering?
VPC peering is best for VPC that exist in different organizations or if you need a shared governance model
What is load balancing in relation of VPC?
Allows you to distribute your worklkoad between scaling resources in GCE, GAE, and GKE
What is the purpose of HTTP(S) Load Balancing?
A global balancer that allows external connectivity and supports IPv4 and IPv6 but only can be used for HTTP and HTTPS traffic. Has features including CDN caching, integration with Cloud Armor, URL maps, SSL certificate hosting, and Quick UDP Internet Connection protocol.
What is SSL Proxy Load Balancing?
The SSL proxy terminates the user’s SSL/TLS connections and is intended for non-HTTP(S) traffic. GLobal and allows external connectivity that supports IPv4 and IPv6. Traffic can use TCP or SSL protocols.
What is TCP Proxy Load Balancing?
TCP Proxy Load Balancing terminates non-HTTP traffic that does not require SSL. It is global and allows external connectivity that supports IPv4 and IPv6.
What is Network TCP/UDP Load Balancing?
A non-proxied load balancer that distributes traffic based inbound IP protocol based on data such as address, port, and protocol type. It is regional, external, and only supports IPv4.
What is Internal TCP/UDP Load Balancing?
A non-proxied regional internal load balancer and only supports IPv4 addresses. Can be used for three tier applications where web services need to load balance an internal connection to the application tier.
