GCP Networking and Security Training

Chapter 1 - Secure Design of Google Cloud Infrastructure

• Google Cloud Resources
• Global, Regional, and Zonal Resources
• Regions and Zones
• Multiregional Resources
• Network Edge Locations
• State-of-the-art Data Centers
• Encryption of Inter-service Communication
• Global Products (Networking category only)
• Overview of Networking Products on Google Cloud
• Projects

Chapter 2 - Resource Hierarchy

• Google Cloud Resource Hierarchy
• Policy Inheritance through the Hierarchy
• Organization Administrators
• Folder Resource
• Project Resource
• IAM Policy Inheritance
• Automatic Policy Updates

Chapter 3 - VPC Virtual Private Cloud

• Virtual Private Cloud (VPC)
• VPC Connectivity
• VPC Routes
• VPC Subnet Routes
• Static Routes
• Dynamic Routes
• Multiple Network Interfaces
• Use Cases for Multiple Interfaces

Chapter 4 - VMs and Google Virtual NIC

• Compute Engine
• Lifecycle of the VM Instance
• Compute Engine Machine Families
• Compute Engine Machine Families [2]
• Types of Storage Options for Compute Engine
• Local SSDs
• Persistent Disks
• Cloud Storage Buckets for VMs
• Google Virtual NIC (gVNIC)

Chapter 5 - Cloud Load Balancing overview

• Cloud Load Balancing
• Single Anycast IP Address
• Software-defined Load Balancing
• Layer 4 and Layer 7 Load Balancing
• External/Internal and Global/Regional Load Balancers
• Cloud Load Balancing
• Eight Types of Load Balancers on Google Cloud

Chapter 6 - VPC Firewall Rules

• VPC Firewall Rules
• Firewall Rule Components
• VPC Firewall Rule Specifications
• VPC Firewall Rule Priority
• Action on Match
• Rule Enforcement
• Target Parameter

Chapter 7 - Cloud NAT

• Cloud NAT
• Cloud NAT (Inbound vs. Outbound) and DNAT
• Cloud NAT, Cloud Router, and Google Cloud VMs
• Cloud NAT and Firewall Rule Evaluation

Chapter 8 - Private Google Access

• Private Google Access
• Subnet-level Traffic Control
• Public IPs and Private Google Access
• Supported Services

Chapter 9 - Shared VPC

• Shared VPC
• Shared VPC Subnets and IP Addresses
• Shared VPC as a Host Project vs a Service Project

Chapter 10 - VPC Network Peering

• VPC Network Peering
• VPC Network Peering Advantages
• Key Properties for Peered VPC Networks
• Import and Export of Custom Routes

Chapter 11 - Cloud VPN

• Cloud VPN
• HA VPN
• HA VPN to AWS Peer Gateways
• HA VPN Between Google Cloud Networks
• HA VPN and IP Addressing

Chapter 12 - Cloud Router

• Cloud Router Overview
• BGP services by Cloud Router
• Cloud Router in a Multicloud Network
• IPv6 support by Cloud Router
• Types of Subnets

Chapter 13 - VPC Service Controls

• VPC Service Controls
• Context-aware Access Control
• VPC Service Controls vs. Identity and Access Management (IAM)
• Capabilities of VPC Service Controls
• Use Case for VPC Service Controls
• Examples of a security boundary by the VPC Service Controls

Chapter 14 - Cloud Interconnect - Dedicated

• Dedicated Interconnect
• Special Requirements for Dedicated Interconnect
• VLAN Attachment with a Cloud Router
• Provisioning of the Dedicated Interconnect Connection
• Monitor Cloud Interconnect Connections
• Google SLA for Cloud Interconnect Connections

Chapter 15 - Cloud Interconnect - Partner

• Partner Interconnect
• Provisioning of Partner Interconnect
• Layer 2 vs. Layer 3 Connectivity
• Basic Topology (Layer 2)
• Basic Topology (Layer 3)
• Redundancy and SLA
• 99.99% Availability Topology
• 99.99% Availability Topology (Layer 2)
• 99.99% Availability Topology (Layer 3)

Chapter 16 - Labs

• LAB 1
• LAB 2
• LAB 3
• LAB 4