دانلود کتاب Google Cloud Certified Professional Cloud Network Engineer Guide: Design, implement, manage, and secure a network architecture in Google Cloud

فهرست مطالب :

Cover
Title Page
Copyright and credits
Dedication
Contributors
About the reviewer
Table of Contents
Preface
Section 1: Network Infrastructure
Chapter 1: Google Cloud Platform Infrastructure
Introducing cloud computing and virtualization
What is cloud computing?
What is virtualization?
Introducing GCP
GCP\'s global infrastructure – regions and zones
Projects, billing, and quotas
Getting started with GCP
GCP resource hierarchy
Interacting with GCP
Understanding virtual machines in the cloud
Google Compute Engine
VPC overview
Overview of Load Balancing, DNS, and CDN
Exploring containers in the cloud
DevOps concepts and microservice architectures
Containerization versus virtualization
Container orchestration with Google Kubernetes Engine
Summary
Further reading
Chapter 2: Designing, Planning, and Prototyping a GCP Network
Technical requirements
Designing the overall network architecture
Failover and DR strategy
Options for HA
DNS strategy in a hybrid cloud environment
Choosing an appropriate load-balancing option
Optimizing for latency (for example, maximum transmission unit (MTU) size; caches; content delivery network (CDN))
Network security design strategy
Designing a VPC
CIDR range for subnets
IP addressing
Routes
Shared VPC versus VPC Network Peering
Firewall rules
Designing a hybrid network
Cloud Interconnect design (for example, Dedicated versus Partner)
Peering options (Direct versus Carrier)
IPsec VPN
Cloud Router
Failover and DR strategy (for example, building HA with BGP using Cloud Router)
Designing a container IP addressing plan for GKE
Creating scalable GKE clusters
IP address planning in GKE
Network security design in GKE
Summary
Chapter 3: Implementing a GCP Virtual Private Cloud (VPC)
Technical requirements
Configuring VPC networks
Configuring VPC resources in GCP
SSH and ICMP protocols
Configuring static and dynamic routing with Cloud Router
Configuring VPC peering
Configuring Shared VPC
Configuring NAT in Google Cloud
Configuring and managing firewall rules
Section 2: Network Services and Security
Chapter 4: Configuring Network Services in GCP
Configuring load balancing
HTTP(S) Global Load Balancing
Internal load balancing
Configuring Cloud Content Delivery Network (CDN)
Summary
Chapter 5: Implementing Hybrid Connectivity in GCP
Technical requirements
Configuring Interconnect
Dedicated Interconnect connection option
Partner Interconnect connection option
Configuring a site-to-site IPsec VPN
Route-based VPN
HA VPN
Diving into Cloud Router
Cloud Router configuration
Static external IP address
MED
Summary
Chapter 6: Implementing Network Security
Configuring Identity and Access Management (IAM)
Configuring Cloud Armor security policies
Configuring a third-party software device (NGFW) insertion into VPC using multiple NICs
Configuring networking and security for a third-party virtual appliance
Implementing third-party virtual appliances (Compute Engine instances) in a shared VPC environment
Implementing routes and firewall rules in a multi-NIC environment
Summary
Section 3: Network Operations, Management, and Monitoring
Chapter 7: Managing and Monitoring Network Operations
Logging and monitoring with GCP operations
VPC Flow Logs
Firewall Rules Logging
VPC audit logs
Packet Mirroring
Summary
Chapter 8: Advanced Networking in Google Cloud Platform
Google Cloud Traffic Director
Understanding Istio and the service mesh
Understanding Traffic Director
Configuring Traffic Director
Configuring the Google Cloud Service Directory
Understanding Service Directory and features
Configuring Service Directory and DNS
Building hub and spoke networks with Network Connectivity Center
Understanding Network Connectivity Center in Google Cloud Platform
Configuring Network Connectivity Center as a transit hub
Summary
Chapter 9: Professional Cloud Network Engineer Certification Preparation
Other Books You May Enjoy
Index