2_Essential Google Cloud Infrastructure: Foundation
What is the purpose of the Stackdriver Trace service? A. Reporting on latency as part of managing performance B. Reporting on GCP system errors C. Reporting on application errors D. Reporting on GCP resource consumption as part of managing performance
A. A. Stackdriver Trace provides latency sampling and reporting for Google App Engine, Google HTTP(S) load balancers, and applications instrumented with the Stackdriver Trace SDKs. Reporting includes per-URL statistics and latency distributions.
Which data storage service provides data warehouse services for storing data but also offers an interactive SQL interface for querying the data? A. BigQuery B. Cloud Dataproc C. Cloud Datalab D. Cloud SQL
A. BigQuery is a data warehousing service that allows the storage of huge data sets while making them immediately processable without having to extract or run the processing in a separate service.
What is the difference between GCP Console and Cloud Shell? A. Cloud Shell is a command-line tool, while GCP Console is graphical user interface B. GCP Console is a command-line tool, while Cloud Shell is a graphical user interface C. There is no difference as these tools are 100% identical D. Cloud Shell is a locally installed tool, while GCP Console is a temporary virtual machine
A. Both tools allow you to interact with GCP. Even though GCP Console can do things Cloud Shell can't do and vice-versa, don't think of them as alternatives, but think of them as one extremely flexible and powerful interface.
A budget is set at $500 and an alert is set at 100%. What happens when the full amount is used? A. A notification email is sent to the Billing Administrator B. You have a 4-hour courtesy period before Google shuts down all resources C. Everything in the associated project will suspend because there is not more budget to spend D. Nothing. There is no point to sending a notification when there is no budget remaining
A. Budgets in GCP are not a way to prevent spending or stop resources. They are a tool for raising awareness about the consumption of resources so that a business can implement its own consumption management processes.
What data storage service might you select if you just needed to migrate a standard relational database running on a single machine in a datacenter to the cloud? A. Cloud SQL B. BigQuery C. Persistent Disk D. Cloud Storage
A. Cloud SQL offers a PostgreSQL server or a MySQL server as a managed service.
In GCP, what is the minimum number of IP addresses that a VM instance needs? A. One: Only an internal IP address B. Two: One internal and one external IP address C. Three: One internal, one external, and one alias IP address
A. In GCP, each virtual machine needs to have an internal IP address. The external IP address is optional; therefore, a VM instance only needs one IP address.
Stackdriver integrates several technologies, including monitoring, logging, error reporting, and debugging that are commonly implemented in other environments as separate solutions using separate products. What are key benefits of integration of these services? A. Reduces overhead, reduces noise, streamlines use, and fixes problems faster B. Ability to replace one tool with another from a different vendor C. Detailed control over the connections between the technologies D. Better for GCP only so long as you don't need to monitor other applications or clouds
A. Stackdriver integration streamlines and unifies these traditionally independent services, making it much easier to establish procedures around them and to use them in continuous ways.
No resources in GCP can be used without being associated with... A. A bucket B. A project C. A virtual machine D. A user
B. All resources in GCP are tracked and their consumption is logged against a project. A project relates resources to a billing method.
What abstraction is primarily used to administer user access in Cloud IAM? A. Leases, and abstraction of periodic entitlement B. Roles, an abstraction of job roles C. Credentials, an abstraction of an authorization token D. Privileges, an abstraction of access rights
B. Cloud IAM administration uses pre-defined roles for administration of user access. The roles are defined by more granular permissions. But permissions are not applied to users directly, only through the roles that are assigned to them.
What are sustained use discounts? A. Per-second billing that starts after a 1 minute minimum B. Automatic discounts that you get for running specific Compute Engine resources for a significant portion of the billing month C. Purchase commitments for specific resources you know you will use D. Discounts you receive by using preemptible VM instances
B. Sustained use discounts are automatic discounts that you get for running specific Compute Engine resources (vCPUs, memory, GPU devices) for a significant portion of the billing month. To take advantage of the full 30% discount, create your VM instances on the first day of the month, because discounts reset at the beginning of each month.
What is the foundational process at the base of Google's Site Reliability Engineering (SRE)? A. Capacity planning B. Testing and release procedures C. Monitoring D. Root cause analysis
C. Before you can take any of the other actions, you must first be monitoring the system.
Which GCP data storage service offers ACID transactions and can scale globally? A. Cloud Storage B. Cloud CDN C. Cloud Spanner D. Cloud SQL
C. Cloud Spanner provides ACID (Atomicity, Consistency, Isolation, Durability) properties that enable transactional reads and writes on the database. It can also scale globally.
How do quotas protect GCP customers? A. By preventing resource use of too many different GCP services B. By preventing resource use by unknown users C. By preventing uncontrolled consumption of resources D. By preventing resource use in too many zones in a region
C. Quotas are established at reasonable defaults for common cloud usage and proof of concept activities. If you are planning to scale up a production cloud solution you may need to request that the quotas be raised. This is a reasonable checkpoint to verify that actions that might result in a large consumption of resources are reviewed.
What are the three types of networks offered in the Google Cloud Platform? A. Zonal, regional, and global B. Gigabit network, 10 gigabit network, and 100 gigabit network C. Default network, auto network, and custom network D. IPv4 unicast network, IPv4 multicast network, IPv6 network
C. The default-type network established fixed standard subnetworks with predefined IP ranges and it is fast to setup. The auto-type network uses the same subnet IP ranges as the default-type, with a network name other than default. And custom-type allows you to specify the IP ranges of subnets.
Which of the following does not allow you to interact with GCP? A. REST-based API B. Cloud Shell C. Cloud Explorer D. GCP Console
C. There are four ways you can interact with GCP: There's the GCP Console, Cloud Shell and the Cloud SDK, the APIs, and the Cloud Mobile App. The Cloud Explorer is not a Google Cloud tool.
Which statement is true of persistent disks? A. Once created, a persistent disk cannot be resized B. Persistent disks are always HDDs (magnetic spinning disks) C. Persistent disks are physical hardware devices connected directly to VMs D. Persistent disks are encrypted by default
D. Persistent Disks are not physical disks, they are a virtual-networked service. Each persistent disk remains encrypted either with system-defined keys or with customer-supplied keys.
Which of the following is not a type of IAM role? A. Advanced B. Custom C. Pre-defined D. Primitive
D. There are three types of roles in Cloud IAM: primitive roles, predefined roles, and custom roles. There are no "advanced" roles in Cloud IAM.
Which statement is true of Virtual Machine Instances in Google Compute Engine? A. All Compute Engine VMs are single tenancy and do not share CPU hardware B. Compute Engine uses VMware to create Virtual Machine Instances C. A VM in Compute Engine always maps to a single hardware computer in a rack D. In Compute Engine, a VM is a networked service that simulates the features of a computer
D. VMs in Compute Engine are a collection of networked services. This includes disks (persistent disks) which are network-attached. In some cases the GCP VM behaves unlike hardware or other kinds of virtual machines, for example, when a multi-tenant virtual CPU ""bursts"", using excess capacity beyond the VM spec.
What is the benefit of applying firewall rules by tag rather than by address? A. Tags help organizations track firewall billing B. Tags in network traffic help with network sniffing C. Tags on firewall rules control which ephemeral IP addresses VMs will receive D. When a VM is created with a matching tag, the firewall rules apply irrespective of the IP address it assigned
D. When a VM is created the ephemeral external IP address is assigned from a pool. There is no way to predict which address will be assigned, so there is no way to write a rule that will match that VM's IP address before it is assigned. Tags allow a symbolic assignment that does not depend on order in the IP addresses. It makes for simpler, more general, and easier to maintain, firewall rules.
What of the following is not a type of IAM member? A. Google Account B. Service Account C. Google Group D. Cloud Identity domain E. G Suite domain F. Organization Account
F. There are five different types of members: Google Accounts, Service Accounts, Google groups, G Suite domains, and Cloud Identity domains. There are no "Organization Accounts" in Cloud IAM.