Architecting with Google Kubernetes Engine

Duration: 3 Days

Course Overview

This three-day instructor-led class introduces participants to deploying and managing containerized applications on Google Kubernetes Engine (GKE) and the other services provided by Google Cloud Platform. Through a combination of presentations, demos, and hands-on labs, participants explore and deploy solution elements, including infrastructure components such as pods, containers, deployments, and services; as well as networks and application services. This course also covers deploying practical solutions including security and access management, resource management, and resource monitoring.

Virtual Learning:
This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.

How can I attend my course?

On-line from
your chosen location

At our dedicated
training facility

On-site at
your premises

Target Audience

This class is intended for the following participants: Cloud architects, administrators, and SysOps/DevOps personnel Individuals using Google Cloud Platform to create new solutions or to integrate existing systems, application environments, and infrastructure with the Google Cloud Platform.

COURSE OBJECTIVES

This course teaches participants the following skills: Understand how software containers work Understand the architecture of Kubernetes Understand the architecture of Google Cloud Platform Understand how pod networking works in Kubernetes Engine Create and manage Kubernetes Engine clusters using the GCP Console and gcloud/ kubectl commands Launch, roll back and expose jobs in Kubernetes Manage access control using Kubernetes RBAC and Google Cloud IAM Managing pod security policies and network policies Using Secrets and ConfigMaps to isolate security credentials and configuration artifacts Understand GCP choices for managed storage services Monitor applications running in Kubernetes Engine

Course Content

Module 1: Introduction to Google Cloud

• Use the Google Cloud Console.
• Use Cloud Shell.
• Define cloud computing.
• Identify Google Cloud compute services.
• Understand regions and zones.
• Understand the cloud resource hierarchy.
• Administer your Google Cloud resources.

Module 2: Containers and Kubernetes in Google Cloud

• Create a container using Cloud Build.
• Store a container in Container Registry.
• Understand the relationship between Kubernetes and Google Kubernetes Engine (GKE).
• Understand how to choose among Google Cloud Compute platforms.

Module 3: Kubernetes Architecture

• Understand the architecture of Kubernetes: pods, namespaces.
• Understand the control-plane components of Kubernetes.
• Create container images using Google Cloud Build.
• Store container images in Google Container Registry.
• Create a Kubernetes Engine cluster.

Module 4: Kubernetes Operations

• Work with the kubectl command.
• Inspect the cluster and Pods.
• View a Pod’s console output.
• Sign in to a Pod interactively.

Module 5: Deployment, Jobs, and Scaling

• Deployments.
• Ways to create deployments.
• Services and scaling.
• Updating deployments.
• Rolling updates.
• Blue/green deployments.
• Canary deployments.
• Managing deployments.
• Jobs and CronJobs.
• Parallel Jobs.
• CronJobs.
• Cluster scaling.
• Downscaling.
• Node pools.
• Controlling pod placement.
• Affinity and Anti-Affinity.
• Pod placement example.
• Taints and tolerations.
• Getting software into your cluster.

Module 6: GKE Networking

• Introduction.
• Pod networking.
• Services.
• Finding services.
• Service types and load balancers.
• How load balancers work.
• Ingress resource.
• Container-native load balancing.
• Network security.

Module 7: Persistent Data and Storage

• Volumes.
• Volume types.
• The PersistentVolume abstraction.
• More on PersistentVolumes.
• StatefulSets.
• ConfigMaps.
• Secrets.

Module 8: Access Control and Security in Kubernetes and Kubernetes EngineTitle

• Understand Kubernetes authentication and authorization.
• Define Kubernetes RBAC roles and role bindings for accessing resources in namespaces.
• Define Kubernetes RBAC cluster roles and cluster role bindings for accessing cluster-scoped resources.
• Define Kubernetes pod security policies.
• Understand the structure of IAM.
• Define IAM roles and policies for Kubernetes Engine cluster administration.

Module 9: Logging and Monitoring

• Use Cloud Monitoring to monitor and manage availability and performance.
• Locate and inspect Kubernetes logs.
• Create probes for wellness checks on live applications.

Module 10: Using GCP Managed Storage Services from Kubernetes Applications

• Understand pros and cons for using a managed storage service versus self-managed containerized storage.
• Enable applications running in GKE to access Google Cloud storage services.
• Understand use cases for Cloud Storage, Cloud SQL, Cloud Spanner, Cloud Bigtable, Cloud Firestore, and BigQuery
• from within a Kubernetes application.

COURSE PREREQUISITES

To get the most out of this course, participants should have: Completed Google Cloud Platform Fundamentals: Core Infrastructure or have equivalent experience Basic proficiency with command-line tools and Linux operating system environments

You will receive a full set of course notes
and all supporting materials for your course.

Hard Copy Delivered to your premises or Downloaded to a chosen device.

Download a
Course Outline PDF

You will receive a full set of course notes and all supporting materials for your course.
Hard Copy Delivered to your premises or Downloaded to a chosen device.

To book this course please call 
+44 (0) 1444 410296 or email Info@kplknowledge.co.uk

Contact us

Training and accreditation is provided through Global Knowledge