Certified Google Cloud Architect

Author Archives: anuj - Page 32

Multi Zone and Multi Region Deployments in GCP (and their Egress charges on GCP)

anuj June 14, 2021 Multi Zone and Multi Region Deployments in GCP (and their Egress charges on GCP)2021-06-14T16:10:49+00:00 GCP Infrastructure No Comment

Also read IP Addressing in GCP and Firewall Rules in GCP Zones and Regions A subnet in GCP can span across multiple zones and multiple regions. When you deploy VMs…

SSL Proxy and HTTPs Load Balancer Health Checks on GCP

anuj June 11, 2021 SSL Proxy and HTTPs Load Balancer Health Checks on GCP2021-07-26T21:33:14+00:00 Google Cloud Load Balancers No Comment

Also read HTTPs Load Balancer on GCP Public Facing Instances? Always put a load balancer for any public facing asset. And the backend for the load balancer can be SSL…

Why not have a single shared VPC for PROD and NON PROD

anuj June 11, 2021 Why not have a single shared VPC for PROD and NON PROD2024-01-22T03:31:38+00:00 GCP Networking No Comment

Shared VPC - Per Environment? The Shared VPC will contain part of your application resources within subnets. Say you use a PROD and a PREPROD subnet within the shared VPC…

Vulnerability Scanning in GCP

anuj June 9, 2021 Vulnerability Scanning in GCP2021-06-09T16:48:52+00:00 Vulnerability Management No Comment

Some Tools that can be used within GCP for OS Level Security Scans Top Level Tool - Security Command Center (Premium Tier) This is where you will see any alerts…

Aqua Security – Vulnerability Management for Cloud Native Workloads

anuj June 9, 2021 Aqua Security – Vulnerability Management for Cloud Native Workloads2021-06-09T16:46:54+00:00 Vulnerability Management 1 Comment

Aqua security product (agents) For deeper security scanning of cloud native (containerized) workloads, try this tool. Does it scan hosts as well? Yes - it has Docker Image Scans as…

VPC Endpoints in AWS and Private Google Access in GCP

anuj June 8, 2021 VPC Endpoints in AWS and Private Google Access in GCP2023-02-04T00:25:46+00:00 GCP Networking 1 Comment

Also read - Private Subnets in GCP and Azure Private Links versus Private Endpoints How does a compute instance access public PaaS services ( a storage bucket or a cloud…

Subnet to Subnet Routes and Routing Tables in GCP

anuj June 8, 2021 Subnet to Subnet Routes and Routing Tables in GCP2022-09-30T18:07:56+00:00 GCP Networking No Comment

(Also read, Routing across a peered VPC in GCP ) Routes belong to a project (actually, to a network that belongs to a project) The first thing to understand is…

Peered VPCs in GCP and Exchanging of Routes (Automatic Routes Exchange)

anuj June 8, 2021 Peered VPCs in GCP and Exchanging of Routes (Automatic Routes Exchange)2021-06-08T00:32:13+00:00 GCP Networking 1 Comment

How does GCP Routing work for a peered VPC? A router is part of the peering connection. A router gets spun up by default, which allows route exchange. Using a…

Why does a Second Network Interface get its own VPC in GCP

anuj June 8, 2021 Why does a Second Network Interface get its own VPC in GCP2021-06-08T00:25:30+00:00 GCP Networking No Comment

Why does a second network interface require a separate VPC (subnet in a separate VPC) to attach to? The reason has to do partly with the way routes are inherited…

Fewer Subnets with Larger Address Spaces – Best Practices for VPC Subnetting in GCP

anuj June 8, 2021 Fewer Subnets with Larger Address Spaces – Best Practices for VPC Subnetting in GCP2021-06-08T00:25:12+00:00 GCP Networking No Comment

Subnets and Routes work differently in GCP, partly due to the global nature of GCP VPCs. Group applications into fewer subnets with larger address ranges Unlike other networking environments in…

«‹30 313233 34 ›»