COURSE OVERVIEW

  • icon3 day course
  • iconPrivate
    info-icon
  • icon Certificate of Attendance
  • iconGoogle Cloud Partner of the Year

As an authorised Google Cloud Training Partner, we’ve been selected by Google to deliver this three-day course.

Through presentations, demonstrations, and labs, participants explore and deploy Google Cloud networking technologies.

These technologies include: Virtual Private Cloud (VPC) networks, subnets, and firewalls; Interconnection among networks; Load balancing ;Cloud DNS; Cloud CDN; Cloud NAT. The course will also cover common network design patterns.

Our Networking in Google Cloud course is available as a private training session that can be delivered via Virtual Classroom, at our training centre in The Shard, or at a location of your choice in the UK.

What you’ll learn

By the end of this course, you will be able to:

  • iconConfigure VPC networks, subnets, and routers
  • iconControl network access to endpoints in VPCs
  • iconImplement network connectivity between Google Cloud projects
  • iconUse Cloud CDN to reduce latency
  • iconConfigure private connection options to provide access to external resources and services from internal networks
  • iconInteract with the Apigee API Platform
  • iconControl administrative access to VPC objects
  • iconInterconnect networks among Google Cloud projects
  • iconConfigure traffic management among load balancer backend services
  • iconOptimise network spend using Network Service Tiers
  • iconImplement network connectivity between Google Cloud projects

Course agenda

Module 1: VPC Networking Fundamentals

  • Create a Compute Engine VM with multiple network interfaces
  • Use the standard tier to lower cloud networking costs
  • Use the premium tier to provide lower latency and faster access to Google Cloud resources

Module 2: Sharing VPC Networks

  • Describe the different ways to share VPC networks that are available in Google Cloud
  • Recognize when to use Shared VPC and when to use VPC Network Peering
  • Configure peering between unrelated VPC networks

Module 3: Network Monitoring & Logging

  • Configure uptime checks, alerting policies, and charts for your network services
  • Monitor Google Cloud network resources
  • Use VPC Flow Logs to log and analyze network traffic behavior
  • Describe how API proxies connect to backend systems
  • Generate an API proxy using an OpenAPI specification
  • Run an API proxy in different environments without changing the target URL in the proxy code
  • Route target endpoints using route rules and troubleshoot proxies using the Apigee debug tool

Module 4: Network Routing & Addressing in Google Cloud

  • Define key routing and addressing concepts relevant to Google Cloud, including IP addresses, subnets, route tables, firewalls, BYOIP, and NATs
  • Describe the configuration and management options for Google Cloud DNS, including private and managed zones
  • Configure and manage route tables to control traffic flow, resolve domain names effectively, and utilize NAT rules for secure access
  • Understand API responses and status codes for REST API
  • Publish APIs as products

Module 5: Private Connection Options

  • Define and differentiate various private connection options (e.g., Private Google Access, Private Services Access, Private Service Connect)
  • Explore use cases of Private Service Connect, Private Service Access, and Private Google Access
  • Implement Private Google Access with Cloud NAT
  • Discuss federated identity and the use of JSON Web Tokens and API proxies
  • Apply the OAuthV2 policy to allow apps to access the retail API proxy by providing an OAuth token

Module 6: Introduction to Network Architecture

  • Describe the Google Cloud provides components that create a good network architecture, such as Cloud Interconnect, VPC Network Peering, Shared VPC, and Network Tiers
  • Summarise key considerations for network design
  • Protect an API proxy against content attacks and malicious requests
  • Prevent internal users from getting unauthorized access to sensitive data
  • Apply a private variable and a debug mask to hide data when debugging an API proxy

Module 7: Network Topologies

  • Explain when to use each network topology based on specific requirements
  • Identify potential bottlenecks or security vulnerabilities in network topologies
  • Implement a meshed topology for a resilient and scalable network architecture
  • Explore development practices and capabilities used to reuse, share, and enforce execution of flows and policies

Module 8: Distributed Denial of Service (DDoS) Protection

  • Identify the four layers of DDoS Mitigation
  • Identify methods Google Cloud uses to mitigate the risk of DDoS for its customers
  • Use Google Cloud Armor to blocklist an IP address and restrict access to a global external Application Load Balancer

Module 9: Controlling Access to VPC Networks

  • Describe how IAM policies affect VPC network access
  • Identify the benefits of using Cloud Firewall’s hierarchical policies at different levels of the cloud infrastructure hierarchy
  • Apply global and regional network firewall policies using Cloud Firewall
  • Explain the role of Cloud IDS in protecting VPC networks from malicious activity
  • Deploy Cloud IDS and configure its settings according to specific security needs
  • Describe the role of Secure Web Proxy in improving network resilience and availability
  • Describe best practices for cloud network security

Module 10: Logging & Analytics

  • Discuss available options for message logging
  • Understand the value and use of API analytics

Module 11: Advanced Topics

  • Discuss recommended practices and tooling for Apigee offline development and CI / CD
  • Explore the Apigee deployment options

Module 10: Advanced Security Monitoring & Analysis

  • Define Packet Mirroring and explain its purpose in network monitoring and security
  • Learn network security best practices

Module 11: Hybrid Load Balancing & Traffic Management

  • Describe the benefits of hybrid load balancing
  • Configure traffic management in a load balance

Module 12: Caching & Optimising Load Balancing

  • Describe how to configure an internal network load balancer as a next hop
  • Use Cloud CDN configuration to optimize content delivery performance
  • Create a Google Cloud Armor edge security policy to protect content

Module 13: Connectivity Options

  • Describe the various connectivity options offered by Google Cloud for hybrid and multi-cloud environments, including Network Connectivity Center, Cloud VPN, Cloud Interconnect, and Cloud CDN
  • Define and differentiate between the various Cloud Interconnect options available in Google Cloud, including Dedicated Interconnect, Partner Interconnect, and Cross-Cloud Interconnect

Module 14: Cloud VPN

  • mplement high availability VPN (HA VPN) for redundancy and failover
  • Identify the benefits and use cases for Cloud HA VPN

Who it's for

This course is suitable for network engineers and administrators who use the Google Cloud console, or any individuals who want to be exposed to software-defined networking solutions in the cloud.

Prerequisites

To get the most out of this course, participants should have completed the Google Cloud Fundamentals: Core Infrastructure course, or have equivalent experience.

BOOK THIS COURSE

Booking for a team or large group (5+ people)

For private sessions call our sales team

We will use the information you submit via this form in line with our Privacy Policy.

Call us020 7993 4556

GET IN TOUCH

We will use the information you submit via this form in line with our Privacy Policy.

020 7993 4556