Google Cloud – Professional Cloud Network Engineer Certification learning path

Google Cloud – Professional Cloud Network Engineer Certification learning path
Google Cloud – Professional Cloud Network Engineer Certification Exam focuses on almost all Google Cloud network services.
Google Cloud -Professional Cloud Network Engineer Certification Summary
There are 50 questions that need to be answered in two hours.
This covers a wide range Google Cloud services, mainly focusing on network services.
You must be hands-on if you are new to GCP. Otherwise, you will not be able to answer some of the questions or execute certain commands.
I took Coursera and ACloud Guru, which are really deep, but practical or hands-on knowledge is essential. Google Cloud – Professional Cloud Network Engineer Certification Resources
CoursesCoursera – Google Cloud Networking Professional Certificate
Coursera – Networking in Google Cloud, which includesNetworking In Google Cloud: Hybrid Connectivity & Network Management
Networking in Google Cloud: Define and Implement Networks
Coursera – Hands-On Labs at Google Cloud for Networking Engineers
A Cloud Guru – Google Cloud Certified – Professional Cloud Architect
Practice testsBraincert Google Cloud Certified – Professional Cloud Network Engineer Practice Exams
As much as possible, use Qwiklabs and Google Free Tier.
Google Cloud – Professional Cloud Network Engineer Certification Topics
Network Services
Refer Google Cloud Networking Services Cheat Sheet
Virtual Private Cloud Understand Virtual Private Cloud (VPC), subnets and the host applications within them
VPC Routes determine which traffic route is next. HINT: It can also be defined for specific tags. Priority is given to more specific tags.
Firewall rules control traffic to and from instances. HINT: Rules with lower integers indicate greater priority. Firewall rules can also be applied to certain tags.
VPC Peering allows private or internal IP address connectivity across VPC networks, regardless of whether they are part of the same project or organization. HINT: VPC Peering does not support transitive peering and uses private IPs.
Shared VPC allows organizations to connect resources from multiple projects into a common VPC network. This allows them to communicate securely with each other using internal IPs from the network. HINT: VLAN attachments must be created in the host network.
Learn the difference between static IPs and ephemeral IPs.
VPC Subnets support primary (alias secondary) IP range
Modifying the subnet mask can increase the primary IP range of an existing subnet, or reducing its prefix length, can be done.
Private Access options allow services with internal IP addresses to communicate with Google APIs.
Private Google Access allows VMs access to the Google APIs and Services set of external IP addresses by enabling Private Google Access on VM’s subnet. HINT: Private Google Access can only be enabled at the subnet level and not at the VPC level
VPC Flow Logs records a sampling of network flows sent and received from VM instances, as well as instances used to host GKE nodes.
Logging Firewall Rules allows auditing, verifying and analysing the effects of firewall rules. HINT: Firewall rules logging does not capture the default implicit ingress deny rule. Add an explicit deny clause
VPC network resources can communicate with each other using internal IPv4 addresses
Hybrid ConnectivityUnderstand Hybrid Connectivity options
Cloud VPNCloud VPN provides secure connectivity between the on-premises data centre and the GCP network via the public internet. Cloud VPN does NOT provide private or internal IP connectivity
Learn what you need to set up Cloud VPN.
Cloud VPN is easy to set up and test hybrid connectivity
Cloud VPN limitations esp. 3Gbps limit. How