Networking

Question 1

How may types of VPC Networks are there ?

Answer 1

3

Question 2

How many networks can you have by default in each project?

Answer 2

15

Question 3

Do subnetworks work on a regional or zonal scale ?

Answer 3

Regional

Question 4

Can subnetworks cross zones?

Answer 4

Yes because they work at the regional level.

Question 5

Which IP address type is optional for vms in GCP, internal or external?

Answer 5

External

Question 6

What is Cloud DNS

Answer 6

Google’s scalable, reliable, low latency, fully managed DNS service. Translates domain names into IP addresses

Question 7

What is a Route?

Answer 7

This is a mapping of an IP range to a destination.

Question 8

What are firewall rules ?

Answer 8

These are rules that protect your vm instances from unapproved connections. There is an implied deny all ingress and allow all egress.

Question 9

What is CIDR

Answer 9

Classless Inter-Domain Routing (CIDR) is an IP address allocation method that improves data routing efficiency on the internet. It allows for more flexibility in assigning IP addresses and routing data between devices.

Question 10

What is Cloud NAT ?

Answer 10

Let’s certain resources without IP addresses to create outbound connections to the internet.

Question 11

What is private Google Access ?

Answer 11

Private Google Access permits access to Google APIs and services in Google’s production infrastructure for vms that do not have an external IP address.

Question 12

What is Cloud IAP ?

Answer 12

Cloud Identity-Aware Proxy (IAP)is a Google Cloud service that intercepts requests sent to your application, authenticates the user making the request using the Google Identity Service, and only lets the requests through if they come from a user authorized to access the application. In addition, it can modify the requestheadersto include information about the authenticated user

Question 13

What is Traffic Director?

Answer 13

Traffic Director is Google Cloud’s fully managed application networking platform and service mesh

Question 14

What is a service mesh ?

Answer 14

A service mesh is a dedicated infrastructure layer built into an application that controls service-to-service communication in a microservices architecture. It controls the delivery of service requests to other services, performs load balancing, encrypts data, and discovers other services

Question 15

What is Cloud VPN ?

Answer 15

Cloud Virtual Private Network is a secure private network within a Cloud Provider like Google Cloud. Cloud VPN securely connects your peer network to your virtual Private Cloud (VPC) network through an IPsec VPN connection.

Question 16

What are the three ways to connect your on-premesis solution to Google Cloud

Answer 16

1. Cloud VPN
2. Cloud Interconnect
3. Peering

Question 17

What is Cloud Armor ?

Answer 17

It’s a service that works alongside an http load balancer to provide build in defense against infrastructure DDoS attacks.

Question 18

What is Packet Mirroring ?

Answer 18

This is a service that can clone the ingress and egress traffic of specific instances in your VPC network and forward it for examination. Captures all traffic and packet data including payloads and headers.

Question 19

What are the two Network Service Tiers?

Answer 19

1. Premium (hot potato) less hops more expensive faster
2. Standard (cold potato) more hops less expensive slower