Course Overview
This course introduces participants to deploying and managing containerized applications on Google Kubernetes Engine (GKE) and other services provided by Google Cloud. Through a combination of presentations, demos, and hands-on labs, participants explore and deploy solution elements, including infrastructure components such as pods, containers, deployments, and services, as well as networks and application services. This course also covers deploying practical solutions, including security and access management, resource management, and resource monitoring.
Course Objectives
- Understand how software containers work.
- Understand the architecture of Kubernetes.
- Understand the architecture of Google Cloud.
- Understand how pod networking works in Google Kubernetes Engine.
- Create and manage Kubernetes Engine clusters using the Google Cloud Console and gcloud/kubectl commands.
- Launch, roll back, and expose jobs in Kubernetes.
- Manage access control using Kubernetes RBAC and IAM.
- Manage pod security policies and network policies.
- Use Secrets and ConfigMaps to isolate security credentials and configuration artifacts.
- Understand Google Cloud choices for managed storage services.
- Monitor applications running in Google Kubernetes Engine.
Who Should Attend?
Cloud architects, administrators, and SysOps/DevOps personnel
Individuals using Google Cloud Platform to create new solutions or to integrate existing systems, application environments, and infrastructure with the Google Cloud Platform.
- Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
- Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
- Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
- Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
- Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
- Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.
Agenda
1 - Introduction to Google Cloud
- Use the Google Cloud Console
- Use Cloud Shell
- Define Cloud Computing
- Identify Google Cloud Compute Services
- Understand Regions and Zones
- Understand the Cloud Resource Hierarchy
- Administer your Google Cloud Resources
- 1 lab and 1 quiz
2 - Containers and Kubernetes in Google Cloud
- Create a Container Using Cloud Build
- Store a Container in Container Registry
- Understand the Relationship Between Kubernetes and Google Kubernetes Engine (GKE)
- Understand how to Choose Among Google Cloud Compute Platforms
- 1 lab and 1 quiz
3 - Kubernetes Architecture
- Understand the Architecture of Kubernetes: Pods, Namespaces
- Understand the Control-plane Components of Kubernetes
- Create Container Images using Cloud Build
- Store Container Images in Container Registry
- Create a Kubernetes Engine Cluster
- 1 lab and 1 quiz
4 - Kubernetes Operations
- The Kubectl Command
- Work with the Kubectl Command.
- Inspect the Cluster and Pods.
- View a Pod’s Console Output.
- Sign in to a Pod Interactively.
- 2 labs and 1 quiz
5 - Deployment, Jobs, and Scaling
- Deployments
- Ways to Create Deployments
- Services and Scaling
- Updating Deployments
- Rolling Updates
- Blue/Green Deployments
- Canary Deployments
- Managing Deployments
- Jobs and CronJobs
- Parallel Jobs
- CronJobs
- Cluster Scaling
- Downscaling
- Node Pools
- Controlling Pod Placement
- Affinity and Anti-Affinity
- Pod Placement Example
- Taints and Tolerations
- Getting Software into your Cluster
- 3 labs and 1 quiz
6 - GKE Networking
- Introduction
- Pod Networking
- Services
- Finding Services
- Service Types and Load Balancers
- How Load Balancers Work
- Ingress Resource
- Container-Native Load Balancing
- Network Security
- 2 labs and 1 quiz
7 - Persistent Data and Storage
- Volumes
- Volume Types
- The PersistentVolume Abstraction
- More on PersistentVolumes
- StatefulSets
- ConfigMaps
- Secrets
- 2 labs and 1 quiz
8 - Access Control and Security in Kubernetes and Kubernetes Engine
- Understand Kubernetes Authentication and Authorization
- Define Kubernetes RBAC Roles and Role Bindings for Accessing Resources in Namespaces
- Define Kubernetes RBAC Cluster Roles and ClusterRole Bindings for
- Accessing Cluster-scoped Resources
- Define Kubernetes Pod Security Policies
- Understand the Structure of IAM
- Define IAM roles and Policies for Kubernetes Engine Cluster Administration
- 2 labs and 1 quiz
9 - Logging and Monitoring
- Use Cloud Monitoring to monitor and manage availability and performance
- Locate and inspect Kubernetes logs
- Create probes for wellness checks on live applications
- 2 labs and 1 quiz
10 - Using Google Cloud Managed Storage Services from Kubernetes Applications
- Understand Pros and Cons for Using a Managed Storage Service Versus Self-managed Containerized Storage
- Enable Applications Running in GKE to Access Google Cloud Storage Services
- Understand Use Cases for Cloud Storage, Cloud SQL, Cloud Spanner, Cloud Bigtable, Cloud Firestore, and BigQuery from within a Kubernetes Application
- 1 lab and 1 quiz
11 - Logging and Monitoring
- CI/CD overview
- CI/CD for Google Kubernetes Engine
- CI/CD Examples
- Manage application code in a source repository that can trigger code changes to a continuous delivery pipeline.
- 1 lab