You have an application deployed on Google Kubernetes Engine using a Deployment named {echo-deployment}.
The deployment is exposed using a Service called
{echo-service}.
You need to perform an update to the application with minimal downtime to the application.
이미지 업데이트 할떄 어케하면 끊김을 최소화할수잇음?
Use kubectl set image
deployment/echo-deployment <new-image>
이미지 이미지 디플로이 하셈.
Your company is using BigQuery as its enterprise data warehouse.
Data is distributed over several Google Cloud projects.
All queries on BigQuery need to be billed on a single project.
You want to make sure that no query costs are incurred on the projects that contain the data.
Users should be able to query the datasets, but not edit them.
How should you configure users' access roles?
데이터는 여러군데 잇는데 빌은 하나의 프로젝트로 하고싶음.ㅇ ㅓ케해야댐?
Add all users to a group. Grant the group the roles of BigQuery jobUser on the billing project and BigQuery dataViewer on the projects that contain the data.
빌할 프로젝트에 그룹 추가하고 jobUser 권한주셈.
실 데이터 잇는 프로젝트는 dataVier권한주고.
You are creating an App Engine application that uses Cloud Datastore as its persistence layer.
You need to retrieve several root entities for which you have the identifiers.
You want to minimize the overhead in operations performed by Cloud Datastore.
DataStore 쓰는데 여러 개 엔티티 조회해야되고, 각 identifier는 잇는데말이지,
오버헤드 최소화 어케해?
Create the Key object for each Entity and run a batch get operation
각 엔티티별 키오브젝트 만들어
그리고 각
You need to upload files from your on-premises environment to Cloud Storage.
You want the files to be encrypted on Cloud Storage using customer-supplied encryption keys.
업로드 할건데 커스텀 인크립션 쓰고싶음 어케해야댐?
A. Supply the encryption key in a .boto configuration file. Use gsutil to upload the files.
.boto 설정 파일에다가 인크립션키 올리셈.
You have a Python web application with many dependencies that requires 0.1 CPU cores and 128 MB of memory to operate in production.
You want to monitor and maximize machine utilization.
You also want to reliably deploy new versions of the application.
Which set of steps should you take?
Perform the following:
Create a Google Kubernetes Engine (GKE) cluster with n1-standard-1 type machines.
Build a Docker image from the production branch with all of the dependencies, and tag it with the version number.
Create a Kubernetes Deployment with the imagePullPolicy set to 'IfNotPresent' in the staging namespace, and then promote it to the production namespace after testing.
Your company wants to start using Google Cloud resources but wants to retain their on-premises Active Directory domain controller for identity management.
Active Directory 이거 계속 유지하고싶음. 어케 해야댐?
Use Google Cloud Directory Sync to synchronize Active Directory usernames with cloud identities and configure SAML SSO.
Your company is running a stateless application on a Compute Engine instance.
The application is used heavily during regular business hours and lightly outside of business hours.
Users are reporting that the application is slow during peak hours.
You need to optimize the application's performance. What should you do?
피크 타임에 느려진다고 함, 비지니스 시간 아니면 사용량 줄어듬.
어케할거임.
Create a custom image from the existing disk.
Create an instance template from the custom image.
Create an autoscaled managed instance group from the instance template
오토스케일링 할거임.
그거 할거면 인스턴스 템플릿 필요하고
템플릿 만들라면 커스텀 이미지 필요함.
Your web application has several VM instances running within a VPC.
You want to restrict communications between instances to only the paths and ports you authorize, but you don't want to rely on static IP addresses or subnets because the app can autoscale.
How should you restrict communications?
Use firewall rules based on network tags attached to the compute instances
오토 스케일 될수잇으니 네트워크 태그를 사용해서 firewall rule만들면댐
You want your Google Kubernetes Engine cluster to automatically add or remove nodes based on CPU load.
CPU 로드를보고 auto scaling 하고싶음. 어케 할거임.
Configure a HorizontalPodAutoscaler with a target CPU usage. Enable the Cluster Autoscaler from the GCP Console
93.
A development team at your company has created a dockerized HTTPS web application.
You need to deploy the application on Google Kubernetes Engine (GKE) and make sure that the application scales automatically.
How should you deploy to GKE?
A. Use the Horizontal Pod Autoscaler and enable cluster autoscaling. Use an Ingress resource to load-balance the HTTPS traffic.
B. Use the Horizontal Pod Autoscaler and enable cluster autoscaling on the Kubernetes cluster. Use a Service resource of type LoadBalancer to load-balance the HTTPS traffic.
103.
마이그레이션 플랜
Assess
Plan
Deploy
Optimize
104.
TCP를 통해 트래픽이 발생.
파일 시스템에 접근해야댐
수평 스케일링 지원 안함.
24/7 사용가능해야댐.
unmanaged instance group
active / standby instance를 different zone
105.
Cloud Run for Anthos
트래픽을 통해
새코드와 이전 버전중에 어떤게 좋은지 알고싶음. 어케 해야댐
새버전으로 배포 하고나서
이전버전과 새버전의 트래픽 비율을 비교
오피스 밖에서 접근 제어하려면?
VPC Service Controls perimeter that includes the projects with the buckets
Create an access level with the CIDR of the office network
Zuletzt geändertvor einem Jahr