How to Pass the Professional Cloud Network Engineer Exam17 Jul, 2019 4 minutes
Do you know your ASN from your elbow? Senior Training Director Mark Crump discusses what he learned from sitting Google Network Engineer certification exam.
The Google Professional Cloud Network Engineer exam covers many topics — it assesses your ability to design and plan Google Cloud Platform (GCP) networks, as well as execute GCP Virtual Public Clouds (VPC), configure network services, and implement hybrid interconnectivity and general GCP network security. Passing the exam will earn you the Google Cloud certification, highly desired by those looking to employ cloud network engineers.
Not only is the exam a great way to expand and test your knowledge, but it’s an opportunity to advance your career as a cloud network engineer. With your Google Cloud Platform (GCP) certificate, you can showcase your expertise to both your current and future employers. It’s important to know that the exam is designed for professionals with at least one year of experience using the GCP — so make sure you have this before sitting the exam.
When I sat the exam
I thought I’d just rock up and smash the exam because I’ve been teaching Google Cloud courses for what seems like ages, plus I have bundles of hands-on experience. So imagine my surprise when I was sat there staring at questions that required me to think about what the correct answer would be!
The challenge I found was that there just wasn’t a great deal of detail in the questions or answers, to the point where the right answer could quite simply be the option that says “X isn’t configured correctly”! Pretty vague right?! Yup, but the trick here is that they are testing your ability to identify where the issue is in this type of question, not fix it. It was this that took me a little while to get my head around. Fortunately, I had enough time to sanity check my answers and make the few amendments needed.
How should you prepare?
If you're looking to pass the Google certification exam our Professional Network Engineer course path will give you some great platform grounding. This includes the two-day Networking in Google Cloud Platform course directly aligned to the certification exam. You'll have a refresher for some of the key principles as well as a look at tech like Load Balancing, VPN and Interconnect from a much more aligned perspective. You will also get the chance to perform some of the new practical labs. My top tip is to pay attention to the videos covering the elements that don't allow you to get hands-on with the tech ( if you don't have the time or free credit to setup Interconnect in the class). They have included some great recorded demos that are invaluable.
I would recommend two more things.
- Sign up for a Qwiklabs account to allow you to perform more varied practical work outside of the class (cough, Kubernetes… cough cough)
- Create your own trial subscription and play!! The major benefit of using Qwiklabs over just a trial subscription is that you’ll be given a task and a rationale as to why you are performing the steps and what the desired outcome is.
I've passed the Cloud Architect exam, this will be easy, right?
If, after reading this you have a question forming in your head along the lines of: “Mark if I’ve got lots of experience and have passed the Architect exam, would it still be advisable to sit the Networking course before taking the exam??” Imagine my answer in the voice of Bricktop “of course, ******* of course! ”. “Why?” Because Google is going to deeply probe your knowledge on the setup, troubleshooting, monitoring and optimisation of as many network technologies as they can and they won’t be relying on old questions or perspectives from other exams. I’d even go as far to say that out of the Architect, Network and Security exams, the Network exam is the toughest of the group. Google’s certifications are recognised as being one of the most widely sought-after cloud certifications in 2019 and they aren’t giving them away easily!
What subjects will be covered in the exam?
Make sure you are familiar with any potential topics that may arise, such as:
- Generic Protocols: understand the fundamentals of BGP, TFTP, SSL, ICMP, and IKE, at the very least
- Troubleshooting: recognise how traffic flows in GCP, including Network Tiering
- Stackdriver: you'll need a solid understanding of where the logs are stored
- BGP: understand in what scenarios you would use Cloud Routers and how to set up single and multiple BGP sessions
- Cloud DNS and DNSSEC: you should have a solid grasp on what these are, as well as the GCP config and integration with other DNS services
- GKE (Kubernetes) networking: understand how to efficiently manage IP allocations for Nodes and Pods and using Alias IPs
- Cloud VPN: understand all areas, including resilient VPN
- Firewalls and Routes: understand how to configure, use tags, apply with service accounts and supersede by priority
- Load Balancing: study all the GCP types and use cases for them
- Google Private Access and Google Private Service Access: learn the use cases
- Cloud CDN: understand how to configure and control cached entries
- Cloud Armor: learn how it can help protect and make your application more efficient once configured
- Interconnect, Peering, VPN — on which of them can you have multiple tunnels and how high a bandwidth can you get?
- VPC: Security Perimeter, Service Controls, Service Context
- SSH: study ports to connect on, firewall rules, connecting to a VM via SSH or RDP and diagnosing issues