Professional Documents
Culture Documents
Cloud OnBoard Fundamentals Deck
Cloud OnBoard Fundamentals Deck
3
<Start Training>
5
10
11
12
13 </Start Training>
14
15
16
1
3
<Start Training>
5
7
Module #1: Introducing
Google Cloud Platform
8
10
11
12
13 </Start Training>
14
15
16
1 Cloud OnBoard
3
Agenda
5
6
Introduction to Google Cloud Platform
7
8 Quiz
9
10
11
12
13
14
15
16
17
18
Cloud OnBoard
Current region
and number
of zones
Cloud OnBoard
For virtual machines and Automatically applied to Pay only for the resources
containers in the cloud; virtual machine use over you need for your application
data processing and other 25% of a month
services too
Cloud OnBoard
Forseti Security
Cloud Dataproc
Kubernetes Engine
Cloud OnBoard
Intrusion detection systems; techniques to reduce insider risk; employee U2F use; software
Operational security
development practices
Hardware infrastructure Hardware design and provenance; secure boot stack; premises security
Google Cloud Platform enables
developers to build, test, and
deploy applications on Google’s
highly secure, reliable, and
scalable infrastructure.
Cloud OnBoard
Compute Storage
BigQuery Pub/Sub Dataflow Dataproc Datalab Natural Vision API Machine Speech Translate
Language Learning API API
API
1 Cloud OnBoard
3
Agenda
5
6
Introduction to Google Cloud Platform
7
8 Quiz
9
10
11
12
13
14
15
16
17
18
1 Cloud OnBoard
3
Quiz
5
10
11
12
13
14
15
16
17
18
1 Cloud OnBoard
3
More resources
5
7
Why Google Cloud Platform? Google Cloud Platform product overview
8
https://cloud.google.com/why-google/ http://cloud.google.com/products/
9
10
Pricing philosophy Google Cloud Platform solutions
11
https://cloud.google.com/pricing/philosophy/ http://cloud.google.com/solutions/
12
13 Data centers
14 https://www.google.com/about/datacenters/
15
16
17
18
1
3
<Cloud OnBoard>
5
7
Module #2: Getting Started with
Google Cloud Platform
8
10
11
12
13 </Cloud OnBoard>
14
15
16
Cloud OnBoard
Identity
● You are responsible for
Operations Securing your data.
Access and authentication
● Google helps you with best
Network security
practices, templates,
OS, data, and content products, and solutions.
Audit logging
Network
Customer-managed Google-managed
Hardware
1 Cloud OnBoard
3
Agenda
5
6
Google Cloud Platform resource hierarchy
7
10 Cloud Identity
11
12
Interacting with Google Cloud Platform
GCP Marketplace
13
14
15
Quiz
16
17
18
1 Cloud OnBoard
3
Projects organize resources
5
14
3
Resource hierarchy levels define
trust boundaries
5
11
● Levels of the hierarchy provide trust
12 boundaries and resource isolation
13
14
15
16
17
18
Cloud OnBoard
Cloud OnBoard
○
■
Create
Ex Drive Ex Mail
robin@example.com
Project Creator
1 Cloud OnBoard
Organization
6 ● A policy is set on a resource
7
○
Folders
9
Projects
12
○
13
14
3
Agenda
5
6
Google Cloud Platform resource hierarchy
7
12
GCP Marketplace
Quiz
13
14
15
16
17
18
1 Cloud OnBoard
3
Cloud Identity
5
8
● Integrate your cloud and on-premises
directories in one IDaaS platform
9
10
● Single sign-on supports SAML 2.0,
11
OAuth 2.0 and OpenID
12
13
● Google grade security and scale
14
Cloud Identity
Cloud Console IAM
admin console
3
The most common ways to identify
users or machines are
5
6 who
7
9
Organization-managed users hosted of Google’s secure
10
IDaaP Including GSuite Users
11
you@domain.com
12
13
User managed Google account
14
test@gmail.com
15
16
Service account
17
test@project_id.iam.gserviceaccount.com
18
1 Cloud OnBoard
3
Service Account
5 Belongs to your application or a virtual machine (VM),
6 instead of to an individual end user
7
8
● Provide a machine identity for carrying out server-to-server/service
interactions
9
10
● Default service accounts managed by Google
11
<project_number>-compute@developer.gserviceaccount.com
12
18
1 Cloud OnBoard
6 can do what
7
10
11
12
13
14
15
16
17
18
1 Cloud OnBoard
3
IAM predefined roles
5 A set of permissions that grouped together
6
10
InstanceAdmin Role
11
compute.instances.delete
12
compute.instances.get
compute.instances.list
13
14
compute.instances.setMachineType
15
compute.instances.start
16 compute.instances.stop
17
example.com
18 <service>.<resource>.<verb>
1 Cloud OnBoard
3
IAM Custom roles
5 lets you define a precise set of permissions
6
10
SecurityAudit Role
11
compute.instances.get
12
compute.instances.list
containers.pods.getLogs
13
14
appengine.instances.get
15
logging.logs.list
16
17
example.com
18
Cloud OnBoard
x x Manage billing
x Invite members
x Remove members
x Delete projects
1 Cloud OnBoard
3
Google Groups Best Practices
5
8
● Assign permissions to groups rather than ● Create Groups for each team in your
individuals organisation
9
10
● Make Groups own resources and projects ● Nest Groups for fine grain control
11
for continuity
12
● Groups can also contain service accounts
13
14
16
17
App A App B
18
1 Cloud OnBoard
3
Audit Logs
5
10
11
Cloud console
12
activity page
13
14
15
Stackdriver
16
logging
17
18
Cloud OnBoard
bucket_1
1 Cloud OnBoard
3
Agenda
5
6
Google Cloud Platform resource hierarchy
7
12
GCP Marketplace
Quiz
13
14
15
16
17
18
Cloud OnBoard
>_
Cloud OnBoard
● Developer tools
○
○
○
3
RESTful APIs
5
10
● Enabled through the Google Cloud Platform Console
11
12 ● Most APIs include daily quotas and rates (limits) that can be
13 raised by request
14
○
15
16
● Experiment with APIs Explorer
17
18
Cloud OnBoard
3
APIs Explorer
5
6 ● The APIs Explorer is an interactive tool that lets you easily try Google
7 APIs using a browser.
8
9
● With the APIs Explorer, you can:
10 ○
11 ○
12
13
○
14
○
15
16
17
18
1 Cloud OnBoard
3
Client Libraries
5
13
14
15
16
17
18
1 Cloud OnBoard
3
Agenda
5
6
Google Cloud Platform resource hierarchy
7
12
GCP Marketplace
Quiz
13
14
15
16
17
18
Cloud OnBoard
3
Agenda
5
6
Google Cloud Platform resource hierarchy
7
12
GCP Marketplace
Quiz
13
14
15
16
17
18
1 Cloud OnBoard
3
Quiz
5
10
11
12
13
14
15
16
17
18
1 Cloud OnBoard
3
Quiz: Service Accounts
5
10
❏ Key generation and rotation when used with App Engine and
11
Compute Engine
12
14
❏ A way to allow users to act with service account permissions
15
16
❏ All of the above
17
18
1 Cloud OnBoard
3
More resources
5
7
Google Cloud Platform security Cloud SDK installation and quick start
8
https://cloud.google.com/security/ https://cloud.google.com/sdk/#Quick_Start
9
10
Configuring permissions Google Cloud Platform solutions
11
https://cloud.google.com/docs/permissions- http://cloud.google.com/solutions/
12
overview
13
14
18
1
3
<Cloud OnBoard>
5
7
Demo:
Get Hands-on with Qwiklabs
8
10
11
12
13 </Cloud OnBoard>
14
15
16
Cloud OnBoard
1 2 3
1 2 3 4
3
<Cloud OnBoard>
5
7
Module #3:
Virtual Machines in the Cloud
8
10
11
12
13 </Cloud OnBoard>
14
15
16
1 Cloud OnBoard
3
Agenda
5
6
Virtual Private Cloud (VPC) Network
7
8 Compute Engine
9
12
Quiz
13
14
15
16
17
18
1 Cloud OnBoard
3
Virtual Private Cloud Network
5
8 ● Build your own VPC on top Google’s physical global fiber network, powered by
9 Andromeda
10
11
● Gives you the flexibility to build solutions that scale and communicate across
12
regions and continents
13
● Abstracts away lower level management so you can focus on creating an
14
elastic, flexible and cost effective solution
15
16
17
18
1 Cloud OnBoard
3
Virtual Private Cloud Network
5
6
Key Features
7
12
● Software defined Routers
13
● Easy ways to share and peer your network
14
15
● Flexible Firewall Rules
16
17
● Up to 5 global networks per project
18
Cloud OnBoard
us-east1
us-east1-b us-east1-c
my-subnet1
Project
asia-east1
B europe-west1
us-central1
us-west1
A C D us-east1
The Internet
Cloud OnBoard
3
Cloud Global Load Balancing:
5
6 HTTP(S)
7
8 ● Global single anycast IP address routes traffic based on location or URL path
9
12
● Integrated health checks means traffic is directed only to healthy instances
13
● Terminates SSL at the load balancer
14
15
● Scalable, requires no pre-warming and provides resilience, fault tolerant
16
architecture
17
18
Cloud OnBoard
3
Cloud Load Balancing Content Base
5
11
Traffic is directed only to instances that
12
pass health checks and has capacity
Scalable, requires no pre-warming
13
14
15
16
17
Default /video
18 Handler
1 Cloud OnBoard
3
Cloud Load Balancing -
TCP/SSL and UDP
5
11
● Traffic is directed only to instances that pass health checks
12
14
15
16
17
18
1 Cloud OnBoard
3
Cloud Load Balancers
5
10
11
Global HTTP(S) SSL Proxy Proxy
12
13
14
Regional Network Internal
15
16
17
18
1 Cloud OnBoard
3
Cloud DNS is cost-effective way to
make your applications and services
5
9
● Low latency solution
10
● Fast Anycast Name Servers
11
12
● Automatic Scaling
13
14
● 100% SLA
15
18
1 Cloud OnBoard
3
Cloud CDN (Content Delivery Network)
5
8 ● Use Google's globally distributed edge caches to cache HTTP(S) load-balanced content far
9 closer to your users than your instances
10
○
11
● Cloud CDN uses caches at network locations to store responses generated by instances
12
13
14
15
16
17
18
1 Cloud OnBoard
3
Agenda
5
6
Virtual Private Cloud (VPC) Network
7
8 Compute Engine
9
12
Quiz
13
14
15
16
17
18
Cloud OnBoard
1 Cloud OnBoard
3
Compute Engine
5
6
Scalable, High Performance Virtual Machines
7
12
● Resize disks with no downtime
13
● Scales from single instances to global, load-balanced cloud computing
14
15
● Various pricing innovation
16
17
● Transparent Maintenance, automatic restarts and health-checks
18
1 Cloud OnBoard
3
Compute Engine
5
6
IaaS that is build for the Cloud era
7
12
● Recommendation Engine
13
16
● Preemptible Machines
17
-10%
100%
-20%
-30%
75%
24%
Price
50%
Monthly
Usage
25%
Rightsizing Recommendations
Optimize for your usage
<compute engine>
Preemptible VMs
Up to 80% cheaper for short-lived instances
CPU and GPU
1 Cloud OnBoard
3
Agenda
5
6
Virtual Private Cloud (VPC) Network
7
8 Compute Engine
9
12
Quiz
13
14
15
16
17
18
Cloud OnBoard
● Routes
● Firewalls
● Cloud Router
1 Cloud OnBoard
10
Carrier Interconnect Direct Peering CDN Interconnect
11
Enterprise-grade Connect your business Allows select CDN providers to establish direct
12 connections provided by directly to Google interconnect links with Google’s edge network at
13
carrier service providers various locations
14
15
16
17
18
Google Cloud Interconnect
Cloud OnBoard
3
Agenda
5
6
Virtual Private Cloud (VPC) Network
7
8 Compute Engine
9
12
Quiz
13
14
15
16
17
18
1 Cloud OnBoard
3
Quiz
5
10
13
14
15
True or False: Google Cloud Load
Balancing lets you balance HTTP traffic
16
across multiple Compute Engine regions.
17
18
1 Cloud OnBoard
3
More resources
5
6
Google Compute Engine
7
https://cloud.google.com/compute/docs/
8
12
Google Cloud Stackdriver
13
https://cloud.google.com/stackdriver/docs/
14
Google Cloud Source Repositories gcloud tool guide
15
https://cloud.google.com/source-repositories/docs/
16
17
18
1
3
<Cloud OnBoard>
5
7
Module #4:
Storage in the Cloud
8
10
11
12
13 </Cloud OnBoard>
14
15
16
1 Cloud OnBoard
3
Agenda
5
6
Cloud Storage
7
10 Cloud Bigtable
11
12
Cloud Datastore
14
15
Integrations with other services
16
17 Quiz
18
Cloud OnBoard
Machine Operations
Compute Networking Big Data Storage
Learning and Tools
● Simple administration
○
3
Your Cloud Storage files are organized
into buckets
5
7
Bucket attributes: Bucket contents:
8 ● Globally unique name ● Files (in a flat namespace)
9
● Storage class ● Access Control Lists
10
● Location
11
○
12
13
● IAM policies or
14 ● Access Control Lists
15 ● Object versioning setting
16
● Object lifecycle management rules
17
18
Cloud OnBoard
Intended for data Most frequently Accessed frequently Accessed less than Accessed less than
that is... accessed within a region once a month once a year
Storage price
Total price per GB transferred
Retrieval price
Use cases Content storage and In-region analytics, Long-tail content, Archiving,
delivery transcoding backups disaster recovery
“Thanks to Google Cloud Platform and the
Google Genomics team, the greatest minds in
science from around the world will be able to
study trillions of data points in one single
database.”
200 PER
UPLOADED
100
UP TO
RAW
TERABYTES GENOME
GIGABYTES
of data from more than
OF DATA
MSSNG project
1,300 WHOLE could easily surpass a
GENOMES PETABYTE
to Google Cloud Storage
PEOPLE
Making MSSNG world’s
10,000
largest single repository
of autism-related DNA
sequencing data
1 Cloud OnBoard
3
Agenda
5
6
Cloud Storage
7
10 Cloud Bigtable
11
12
Cloud Datastore
14
15
Integrations with other services
16
17 Quiz
18
Cloud OnBoard
● Automatic replication
● Managed backups
● Google security
Cloud OnBoard
● Automatic replication
3
Agenda
5
6
Cloud Storage
7
10 Cloud Bigtable
11
12
Cloud Datastore
14
15
Integrations with other services
16
17 Quiz
18
Cloud OnBoard
● Integrated
○
○
Cloud OnBoard
● Replicated storage
● Role-based ACLs
Streaming
Batch Processing
Cloud Bigtable
1 Cloud OnBoard
3
Agenda
5
6
Cloud Storage
7
10 Cloud Bigtable
11
12
Cloud Datastore
14
15
Integrations with other services
16
17 Quiz
18
Cloud OnBoard
● Fully managed
● Built-in redundancy
● Schemaless access
○
3
Agenda
5
6
Cloud Storage
7
10 Cloud Bigtable
11
12
Cloud Datastore
14
15
Integrations with other services
16
17 Quiz
18
Cloud OnBoard
Type NoSQL NoSQL Blobstore Relational SQL Relational SQL Relational SQL
document wide column for OLTP for OLTP for OLAP
queries
Unit size 1 MB/entity ~10 MB/cell 5 TB/object Determined by 10,240 MiB/ 10 MB/row
~100 MB/row DB engine row
Cloud OnBoard
Type NoSQL NoSQL Blobstore Relational SQL Relational SQL Relational SQL
document wide column for OLTP for OLTP for OLAP
Best for Getting “Flat” data, Structured and Web Large-scale Interactive
started, App Heavy read/ unstructured frameworks, database querying, offline
Engine write, events, binary or object existing applications (> analytics
applications analytical data data applications ~2 TB)
Use cases Getting AdTech, Images, large User Whenever high Data
started, App Financial and media files, credentials, I/O, global warehousing
Engine IoT data backups customer consistency is
applications orders needed
1 Cloud OnBoard
3
Agenda
5
6
Cloud Storage
7
10 Cloud Bigtable
11
12
Cloud Datastore
14
15
Integrations with other services
16
17 Quiz
18
Cloud OnBoard
BigQuery Compute
Engine
Cloud
Object storage, Import and
Storage export tables
logs, and
Datastore backups
External
service
Cloud SQL can be used Compute Engine instances Cloud SQL can be used with
with App Engine using can be authorized to access external applications and clients.
standard drivers. Cloud SQL instances using
an external IP address. Standard tools can be used to
You can configure a Cloud SQL administer databases.
instance to follow an App Cloud SQL instances can be
Engine application. configured with a preferred zone. External read replicas can
be configured.
1 Cloud OnBoard
3
Agenda
5
6
Cloud Storage
7
10 Cloud Bigtable
11
12
Cloud Datastore
14
15
Integrations with other services
16
17 Quiz
18
1 Cloud OnBoard
3
Quiz
5
10
14
15
16
17
18
1 Cloud OnBoard
3
More resources
5
6
Overview of Cloud Storage Cloud Spanner
7
https://cloud.google.com/storage/ https://cloud.google.com/spanner/docs/
8
12
Cloud Bigtable
13
https://cloud.google.com/stackdriver/docs/
14
15
16
17
18
1
3
<Cloud OnBoard>
5
7
Module #5:
Containers in the Cloud
8
10
11
12
13 </Cloud OnBoard>
14
15
16
Cloud OnBoard
Pay for what you allocate Pay for what you use
More management overhead Less management overhead
1 Cloud OnBoard
3
Agenda
5
6
Introduction to Containers
7
8 Kubernetes
9
10 Kubernetes Engine
11
12
Quiz
13
14
15
16
17
18
Cloud OnBoard
Hardware
Hypervisor
Hardware
1 Cloud OnBoard
3
Why use containers?
5
10
11
12
13
14
15
16
17
18
1 Cloud OnBoard
3
Agenda
5
6
Introduction to Containers
7
8 Kubernetes
9
10 Kubernetes Engine
11
12
Quiz
13
14
15
16
17
18
Cloud OnBoard
● Workload portability
○
● Rolling updates
○
● Persistent storage
○
Cloud OnBoard
● Multi-zone clusters
○
● Load balancing
○
● Autoscaling
○
1 Cloud OnBoard
3
Agenda
5
6
Introduction to Containers
7
8 Kubernetes
9
10 Kubernetes Engine
11
12
Quiz
13
14
15
16
17
18
Cloud OnBoard
3
Kubernetes Engine’s complementary services
5
10
11
12
13
14
15
16
17
18
Cloud OnBoard
Treeptik
7
Kubernetes App Engine App Engine Flexible
8 Engine Standard
9
12
Service model Hybrid PaaS PaaS
13
14
Primary use case Container-based Web and mobile Web and mobile
workloads applications applications,
15
container-based
16 workloads
17
18
Cloud OnBoard
Go to
1 https://www.coursera.org/voucher/Cloudonboard
Enroll in
Getting Started with Google
3 Kubernetes Engine
-Limited time offer!!
3
Agenda
5
6
Introduction to Containers
7
8 Kubernetes
9
10 Kubernetes Engine
11
12
Quiz
13
14
15
16
17
18
1 Cloud OnBoard
3
Quiz
5
10
11
True or False: Kubernetes lets you
manage container clusters in multiple
12
cloud providers.
13
14
18
1 Cloud OnBoard
3
More resources
5
6
Kubernetes Engine Google Cloud Container Builder
7
https://cloud.google.com/container- https://cloud.google.com/container-
8
engine/docs/ builder/docs/
9
Kubernetes
14
http://kubernetes.io/
15
16
17
18
1
3
<Cloud OnBoard>
5
7
Module #6:
Applications in the Cloud
8
10
11
12
13 </Cloud OnBoard>
14
15
16
1 Cloud OnBoard
3
Agenda
5
6
Google App Engine
7
12
Google Cloud Endpoints and Apigee Edge
Quiz
13
14
15
16
17
18
Cloud OnBoard
3
Agenda
5
6
Google App Engine
7
12
Google Cloud Endpoints and Apigee Edge
Quiz
13
14
15
16
17
18
Cloud OnBoard
● Economical
○
○
3
Agenda
5
6
Google App Engine
7
12
Google Cloud Endpoints and Apigee Edge
Quiz
13
14
15
16
17
18
Cloud OnBoard
● No sandbox constraints
Pricing model After free daily use, pay per instance class, Pay for resource allocation per hour; no
with automatic shutdown automatic shutdown
Cloud OnBoard
Primary use Container-based workloads Web and mobile applications, Web and mobile applications
case container-based workloads
3
Agenda
5
6
Google App Engine
7
12
Google Cloud Endpoints and Apigee Edge
Quiz
13
14
15
16
17
18
Cloud OnBoard
3
Apigee Edge helps you secure and
monetize APIs
5
8
1. A platform for making APIs available to your customers
9
and partners
10
11
2. Contains analytics, monetization, and a developer portal
12
13
14
15
16
17
18
1 Cloud OnBoard
3
Agenda
5
6
Google App Engine
7
12
Google Cloud Endpoints and Apigee Edge
Quiz
13
14
15
16
17
18
1 Cloud OnBoard
3
Quiz
5
10
11
14
15
16
17
18
1 Cloud OnBoard
3
More resources
5
6
Google App Engine Google Cloud Endpoints
7
https://cloud.google.com/appengine/docs/ https://cloud.google.com/endpoints/docs/
8
13
Google App Engine Standard Environment
https://cloud.google.com/appengine/
14
docs/standard/
15
16
17
18
1
3
<Cloud OnBoard>
5
7
Module #7:
Developing, Deploying, and Monitoring in the Cloud
8
10
11
12
13 </Cloud OnBoard>
14
15
16
1 Cloud OnBoard
3
Agenda
5
6
Development in the cloud
7
12
13
14
15
16
17
18
Cloud OnBoard
Cloud Functions
3
Agenda
5
6
Development in the cloud
7
12
13
14
15
16
17
18
Cloud OnBoard
Deployment Manager
3
Agenda
5
6
Development in the cloud
7
12
13
14
15
16
17
18
Monitoring Logging Debug
6
Monitoring Logging Profiler
7
13
3
More resources
5
6
Cloud Source Repositories
7
https://cloud.google.com/source-repositories/docs/
8
9 Deployment Manager
10 https://cloud.google.com/deployment-manager/docs/
11
12
Google Stackdriver
13
https://cloud.google.com/stackdriver/docs/
14
15
16
17
18
1
3
<Cloud OnBoard>
5
7
Module #8:
Big Data and Machine Learning in the Cloud
8
10
11
12
13 </Cloud OnBoard>
14
15
16
1 Cloud OnBoard
3
Agenda
5
6
Google Cloud Big Data Platform
7
10 Quiz
11
12
13
14
15
16
17
18
Cloud OnBoard
I
Cloud OnBoard
BigQuery
Transforms
Sink
Cloud Storage
Cloud OnBoard
3
Agenda
5
6
Google Cloud Big Data Platform
7
10 Quiz
11
12
13
14
15
16
17
18
Cloud OnBoard
6
For structured data For unstructured data
7
11
12
Text analytics
Recommendation
13
14
15
Anomaly detection
16
17
18
Cloud OnBoard
● Programmatically detect a
document’s language
3
Agenda
5
6
Google Cloud Big Data Platform
7
10 Quiz
11
12
13
14
15
16
17
18
1 Cloud OnBoard
3
Quiz
5
10
13
16
17
18
1 Cloud OnBoard
3
More resources
5
6
Google Big Data Platform
7
https://cloud.google.com/products/big-data/
8
12
13
14
15
16
17
18
1
3
<Cloud OnBoard>
5
8
Closing Session
9
10
11
12
13 </Cloud OnBoard>
14
15
16
Cloud OnBoard
cloud.google.com/certification
1 Cloud OnBoard
3
Google Cloud Developer Communities
5
11
Train, share, and learn about the
12
latest features and newest updates
13
on Google Cloud.
14
15
cloudcommunities@google.com
16 cloud.google.com/community/meetups 50 chapters globally and growing
17
18