Fundamentals - Virtual Machines Flashcards

1
Q

What does VPC stand for?

A

Virtual Private Cloud

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Why do you need to configure a VPC networks?

A

The VPC networks:

  • connect your GCP resources
  • to each other
  • and to the internet.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What do you need to configure so that you can connect your Google Cloud Platform resources to each other and to the internet.

A

A Virtual Private Cloud (VPC) network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Name 3 things you can configure on your VPC network (same as you would on a corporate network)?

A

You can segment your networks,
use firewall rules to restrict access to instances,
and create static routes to forward traffic to specific destinations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

When defining a VPC network, do you need to limit it to a specific zone?

A

No - The virtual private cloud networks that you define have global scope.
They can have subnets in any GCP region worldwide.
And subnets can span the zones that make up a region.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Can VPC network subnets span more than one zone?

A

Yes - subnets can span the zones that make up a region.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Can VPC network subnets span more than one region?

A

No - Although VPC network can have subnets in any GCP region worldwide, subnets themselves are regional resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Can you increase the size of a subnet after it’s been created?

A

Yes - You can dynamically increase the size of a subnet in a custom network by expanding the range of IP addresses allocated to it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the impact of provisioned VMs when you increase the size of subnet?

A

None - expanding the range of IP addresses allocated to a subnet doesn’t affect already‑configured VMs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Why would you define a subnet that spans more than one zone?

A

Resiliency - you could configure two VMs on different zones but which can easily communicate with each other as “neighbours” on the same subnet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which Cloud service do you use to create VMs?

A

Google Compute Engine

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Name 4 benefits from provisioning your VM in the cloud over creating it on-prem?

A

There are no upfront investments,
You can run thousands of virtual CPUs…
…on a system that is designed to be fast …
…and to offer consistent performance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Name 2 ways you can create a virtual machine in GCP?

A

Google Cloud Platform Console

Command line - using gcloud

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What operating system images can you run on a GCP VM?

A

Google’s images of:
+ Linux
+ Windows
Or your own customised images

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which resource sizes does your choice of GCP VM determine?

A

How much memory…

… and how many virtual CPUs it has

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Are GPUs available in all zones?

A

No - but they are available in many of them.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What type of workload would prompt you to consider using GPUs on your VM?

A

Machine learning

Certain types of data processing that can take advantage of GPUs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What types of disks can you choose for your GCP VMs?

A

Standard - Persistent disk

SSD - Local Solid State Drive

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

When storing data to SSD, what should you be mindful of?

A

Content doesn’t last past when the VM terminates

So don’t use it for data you need to persist.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What type of data should you store on an SSD?

A

Scratch pad - as content doesn’t last past when the VM terminates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What type of data SHOULDN’T you store on an SSD?

A

Persistent - as content doesn’t last past when the VM terminates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

What is the default disk type for VMs?

A

Standard (persistent disk as opposed to SSD)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

How can you configure your VM to come up with pre-defined configuration?

A

By passing in a startup script

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Why would you choose to configure your VM as pre-emptible?

A

You can save money

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

What are the differences between a pre-emptible and a standard VM?

A

Just one difference: you’ve given Compute Engine permission to terminate it if it’s resources are needed elsewhere.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

What is the max number of vCPUs you can specify on your VM?

A

96 according to Pluralsight training

60 according to GCP online documentation

27
Q

What is the maximum memory size you can define on a VM?

A

For N1 machine types, you can add up to a total of 624 GB of memory per VM.
For N2 machine types, you can add up to a total of 640 GB of memory per VM.
For N2D machine types, you can add up to a total of 768 GB of memory per VM.

28
Q

What happens if you enable autoscaling on a managed instance group (MIG)?

A

Compute Engine will add and takeaway VMs from your application based on load metrics.

29
Q

What does MIG stand for?

A

Managed Instance Group

30
Q

What are VPC routing tables used for?

A

VPCs routing tables are used to forward traffic from one instance to another instance:

  • within the same network,
  • across subnetworks
  • and even between GCP zones,
31
Q

Do you have to configure and manage VPC routing tables?

A

No - VPCs routing tables are built in. You don’t have to provision or manage a router.

32
Q

Why wouldn’t you need to configure and manage firewall instances?

A

Because:

  • VPCs …
  • give you a global‑distributed firewall
  • that you can control to restrict access to instances,
  • both incoming and outgoing traffic.
33
Q

What convenient attribute can you use to configure your firewall rules?

A

Metadata tags - You can define firewall rules in terms of metadata tags on Compute Engine instances

For example:

  • You can tag all your web servers with “web”
  • and write a firewall rule saying that traffic on ports 80 or 443 is allowed into all VMs with the “web” tag (no matter what their IP address happens to be)
34
Q

What are VPCs attached to (org, folder, project, resource)?

A

VPCs belong to a given GCP project

35
Q

What two options do you have to enable VPCs belonging to different GPC projects to communicate with each other?

A

Peering vs Shared:

  • VPC Peering
  • Shared VPC
36
Q

In what case would you use VPC peering?

A

If you simply want to establish a peering relationship between two VPCs so that they can exchange traffic.
You don’t need IAM to control who and what in one project can interact with the VPC in another.

37
Q

In what case would you use shared VPC?

A

If you want to use the full power of IAM to control who and what in one project can interact with the VPC in another.

38
Q

What Google Cloud service do you need to use to route traffic to your VMs if you’ve enabled autoscalling?

A

Cloud Load Balancing

39
Q

What is Cloud Load Balancing?

A

Cloud Load Balancing is:

  • A fully distributed,
  • software‑defined
  • managed service
  • for all your traffic.
40
Q

Does Cloud Load Balancing run on a VM?

A

No - it’s software-defined managed service.

41
Q

Do you need to worry about scalling or managing Cloud Load Balancers?

A
No - because the load balancers don't run in VMs you have to manage; 
Cloud Load Balancer is:
* a software-defined 
* managed service 
for your traffic.
42
Q

What front-ends your Cloud Load Balancer?

A

A single anycast IP front ends all your back‑end instance

43
Q

Do you need to define more than one anycast IP address for your load balancer if you’re application is defined as multi-region?

A

No - a single anycast IP front ends all your back‑end instances in regions around the world.
It provides cross‑region load balancing, including automatic multiregion failover

44
Q

There are 5 Cloud Load Balancing options you can you choose from; what are they?

A

Note:
Global vs. Regional traffic
External vs. Internal traffic

  • Global HTTP(S)
  • Global SSL Proxy
  • Global TCP Proxy
  • Regional
  • Regional Internal
45
Q

When would you choose Global HTTP(S) load balancing?

A

If you need cross‑regional load balancing for a web application

46
Q

When would you choose Global SSL Proxy load balancing?

A

For secure sockets layer traffic that is not HTTP

The proxy services only work for specific port numbers, and they only work for TCP

47
Q

When would you choose Global TCP Proxy load balancing?

A

If it’s other TCP traffic that does not use secure sockets layer (SSL)
The proxy services only work for specific port numbers, and they only work for TCP

48
Q

When would you choose Regional load balancing?

A

If you want to load balance UDP traffic or traffic on any port number, you can still load balance across a GCP region with the regional load balancer

49
Q

When would you choose Regional Internal load balancing?

A

Use the internal load balancer if you want to load balance traffic inside your project (say between the presentation layer and the business logic layer of your application).
It accepts traffic on a GCP internal IP address and load balances it across Compute Engine VMs.

50
Q

What is 8.8.8.8?

A

Google’s Domain Name Service (DNS)

One of the most famous Google services that people don’t pay for is 8.8.8.8
It provides a public domain name service to the world. DNS is what translates internet hostnames to addresses.
And as you would imagine, Google has a highly developed DNS infrastructure.
It makes 8.8.8.8 available so that everybody can take advantage of it.

51
Q

What does DNS stand for?

A

Domain Name Service

DNS is what translates internet hostnames to addresses.

52
Q

What GCP service can you use to route traffic to your applications?

A

Cloud DNS

53
Q

What is Cloud DNS?

A
  • A managed DNS service
  • Running on the same infrastructure as Google.
  • It has low latency and high availability,
  • and it’s a cost‑effective way to make your applications and services available to your users.

The DNS information you publish is served from redundant locations around the world. Cloud DNS is also programmable.

54
Q

What does CDN stand for?

A

Content Delivery Network

55
Q

What is Cloud CDN?

A

A managed service that allows you to accelerate content delivery to your applications.
It leverages Google’s global system of edge caches.

56
Q

What are the benefits of using Cloud CDN?

A
  • Your customers will experience lower network latency,
  • the origins of your content will experience reduced load,
  • and you can save money.
57
Q

What is a pre-req for using Cloud CDN?

A

You need to have set up HTTPS load balancing

58
Q

What’s involved in turning on Cloud CDN?

A

Tick a checkbox - Once you’ve set up HTTPS load balancing, simply enable Cloud CDN with a single checkbox.

59
Q

What options do you have to interconnect your existing network to your VPC one?

A
  • VPN
  • Direct Peering: Not over the internet, direct between you and Google
  • Carrier Peering: Not over the internet, indirect (via a partner who has direct peering with Google)
  • Dedicated Interconnect: Best for high-availability etc - in partnership with Google
60
Q

What Google feature can you use to make your VPN interconnect with Google dynamic?

A

Cloud Router - lets your other networks and your Google VPC exchange route information over the VPN using the Border Gateway Protocol (instead of IPSec?)

61
Q

What protocol does VPN interconnect use (for non dynamic routing)?

A

IPSec

62
Q

What protocol does Cloud Router use which enables dynamic routing of VPN interconnect traffic?

A

Boarder Gateway Protocol

63
Q

What does “Peering” interconnect mean?

A

Peering means:

  • putting a router in the same public data center as a Google point of presence…
  • …and exchanging traffic