Google Cloud Platform

Fundamentals

janakiram.com
Course Structure

• This course has 12 sections

• Each section focuses on a specific theme
• A section has the following lectures:
• Learning objectives
• Overview of the services
• Discussion on each service
• Demo of one of the key services of the theme
• Use cases and scenarios
• Links are provided in the slide as a pointer to external resources
• Each section has a downloadable set of resources
Google Cloud Platform
Fundamentals

janakiram.com
Key Takeaways
• The big picture of Google Cloud Platform
• Essential building blocks
• Compute
• Storage
• Network
• Identity Management
• Additional Services
• Databases
• Data & Analytics
• Artificial Intelligence & Machine Learning
• DevOps
• Other Services
The Big Picture of Google Cloud Platform
Footprint of Google Cloud Platform
Footprint of Google Cloud Platform

Resource link: https://cloud.google.com/about/locations/

 The Big Picture of GCP

Management Tools

Hybrid & Multi-cloud API Management Migration

AI & Machine Learning

DevOps
Security
Tools
Database Data & Analytics

Compute Storage Network

Key GCP Services
Key Compute Services

Compute

Compute Kubernetes Container Cloud

App Engine
Engine Engine Registry Functions
Key Storage & Database Services

Storage and Databases

Cloud Cloud Cloud Persistent

Cloud Storage Cloud SQL
Bigtable Datastore Spanner Disk
Key Network Services

Networking

Cloud Virtual Cloud Load Cloud

Cloud CDN Cloud DNS
Network Balancing Interconnect
Key Security & Identity Services

Security & Identity

Cloud Resource Cloud Security Cloud Platform

Cloud IAM
Manager Scanner Security
Key AI & Machine Learning Services

AI & Machine Learning

Cloud Machine Natural Translation

Vision API Speech API Jobs API
Learning Language API API
Key DevOps Tools

DevOps Tools

Deployment Cloud Source Cloud Tools for Cloud Tools

Cloud SDK
Manager Repositories Android Studio for IntelliJ

PowerShell Visual Studio Plug-in for Cloud Test

Cloud Tools Cloud Tools Eclipse Lab
Key Management Tools

Management Tools

Error Deployment Cloud Cloud

Stackdriver Monitoring Logging Trace Debugger
Reporting Manager Endpoints Console

Cloud Cloud Mobile Billing Cloud

Shell App App APIs
GCP Services
GCP Services

Other Services

Transfer Beyond Deployment Memorystore

API Analytics IoT Core VPN AutoML Filestore
Appliance Corp Manager
Overview of Google Cloud
Platform

janakiram.com
Learning Objectives

• The big picture of Google Cloud Platform

• Key building blocks of Google Cloud Platform
• Other services of Google Cloud Platform
 Summary
• GCP has a global footprint spanning all the continents
• GCP includes core infrastructure, databases, analytics, AI and more
• The platform has over 100 services spanning IaaS, PaaS, and SaaS

Management Tools

Hybrid & Multi-cloud API Management Migration

AI & Machine Learning

DevOps
Security
Tools
Database Data & Analytics

Compute Storage Network

Resource link: https://cloud.google.com/products/

Interacting with Google Cloud Platform
Interacting with GCP

Web Console Cloud Shell Mobile App REST API

Cloud SDK
Accessing GCP Shell

• An interactive shell environment for GCP

• Accessible from any web browser
• Comes preloaded with an IDE, gcloud SDK and other tools
• Based on a GCE VM
• Provides 5GB of persistence disk storage
• In-built web preview functionality
Understanding Google Cloud Platform Resources
Understanding GCP Resources

• Resources are the fundamental components of GCP

• GCE VMs
• GAE instances
• Cloud Pub/Sub topics
• Cloud Storage buckets
• ….
• Resources belong to a project
• Projects may be organized into a folders
• Project represents a billable unit
• Folders provide logical grouping of projects
• Folders belong to one and only one organization
• An organization is the top level entity in GCP hierarchy
Understanding GCP Resources

Resource
Project
Folder Resource
Project
Organization

Folder Project Resource

Understanding GCP Resources
 Getting Started with
Google Cloud Platform

janakiram.com
Learning Objectives

• Signing up with GCP

• Resource hierarchy
• Interacting with GCP Resources
Signing up with Google Cloud Platform
GCP Free Tier

Resource link: https://cloud.google.com/free

Signing up with GCP
Signing up with GCP
Signing up with GCP
Signing up with GCP
 Summary
• GCP offers a $300 credit along with a free tier
• Organization, folders, projects, resources are a part of GCP hierarchy
• GCP is accessed through console, Cloud Shell, SDK, and a mobile app
• GCP Cloud Shell is a powerful environment available within the browser
Overview of Google App Engine
Google App Engine

• One of the first compute services from Google (PaaS)

• Fully managed platform for deploying web apps at scale
• Supports multiple languages, frameworks, and libraries
• App Engine is available in two environments
• Standard
• Flexible
• Applications deployed in standard environment run in a sandbox
• Flexible environment uses Docker containers to deploy and scale apps

Resource link: https://cloud.google.com/appengine/docs/the-appengine-environments

Overview of Google Compute Engine
Google Compute Engine

• GCE enables Linux and Windows VMs to run on Google’s global

infrastructure
• VMs are based on machine types with varied CPU and RAM configuration
• Persistence is available through standard and SSD disks
• VMs are charged a minimum of 1 minute and in 1 second increments
after that
• Sustained use discounts are offered for running VMs for a significant
portion of the billing month
• Committed use discounts are offered for purchases based on1 year or 3
year contracts
Overview of Google Cloud Functions
Google Cloud Functions

• Cloud Functions is a serverless execution environment for building and

connecting cloud services
• Serverless compute environments execute code in response to an event
• Cloud Functions supports JavaScript, Python 3, and Go
• GCP events fire a Cloud Function through a trigger
• An example event includes adding an object to a storage bucket
• Trigger connects the event to the function
Overview of Google Kubernetes Engine
Google Kubernetes Engine

• GKE is a managed environment for deploying containerized applications

managed by Kubernetes
• Kubernetes has a control plane and worker node
• GKE provisions worker nodes as GCE VMs
• Node pools enable mixing and matching different VM configurations
• The service is tightly integrated with GCP resources such as networking,
storage, and monitoring
• Auto scaling, automatic upgrades, and node auto-repair are some of the
unique features of GKE
Google Cloud Platform
Compute Services

janakiram.com
Learning Objectives

• Overview of GCP Compute Services

• App Engine
• Compute Engine
• Kubernetes Engine
• Cloud Functions
Demo: Launching a VM in GCE
• Use Cases of Compute Services
Overview of GCP Compute Services
Overview of GCP Compute Services

• Compute services are a critical component of the cloud

• Code is deployed and executed in one of the compute services
• GCP offers a wide range of compute choices
• App Engine
• Compute Engine
• Kubernetes Engine
• Cloud Functions
GCP Compute – Use Cases
The Choice of Compute on GCP

Google Compute Google Kubernetes Google App Google Cloud

Engine (GCE) Engine (GKE) Engine (GAE) Functions

Highly customizable / Highly managed

Use Cases

Product Delivery Model Key Feature Use Case

Google Compute
IaaS Virtual Machines Highly customized workloads
Engine

Google Kubernetes Containers &

CaaS Containerized workloads
Engine Microservices

Google App Engine PaaS Managed Runtime Line-of-business applications

Google Cloud
FaaS Functions Event-driven applications
Functions
Google Cloud Filestore
Google Cloud Filestore

• Managed file storage service for applications

• Delivers NAS-like filesystem interface and a shared filesystem
• Centralized, highly-available filesystem for GCE and GKE
• Exposed as a NFS fileshare with fixed export settings and default Unix
permissions
• Filestore file shares are available as mount points in GCE VMs
• On-prem applications using NAS take advantage of Filestore
• Filestore has built-in zonal storage redundancy for data availability
• Data is always encrypted while in transit
Google Cloud Storage
Google Cloud Storage

• Unified object storage for a variety of applications

• Applications can store and retrieve objects through single API
• GCS can scale to exabytes of data
• GCS is designed for 99.999999999% durability
• GCS can be used to store high-frequency and low-frequency access of
data
• Data can be stored within a single region, dual-region, or multi-region
 Google Cloud Storage – Storage Classes

High-performance object storage Backup & archival storage

High Frequency Access Low Frequency Access Lowest Frequency Access

Standard Nearline Coldline

• Most common • Meant for data • Meant for data

storage class used by accessed less accessed least
developers frequently frequently

• Optimized for reduced • Chosen for data • Chosen for data

latency accessed less than accessed less than
once a month once a year
Google Cloud Storage – Location Type
Google Cloud Platform
Storage Services

janakiram.com
Learning Objectives

• Overview of GCP Storage Services

• Cloud Storage
• Persistent Disks
• Cloud Filestore
Demo: Storing data in Cloud Storage
• Use Cases of Storage Services
Overview of GCP Storage Services
Overview of GCP Storage Services

• Storage services add persistence and durability to applications

• Storage services are classified into three types:
• Object storage
• Block storage
• File system
• GCP storage services can be used to store:
• Unstructured data
• Folders and Files
Persistent Disks
Persistent Disks

• PD provides reliable block storage for GCE VMs

• Disks are independent of Compute Engine VMs
• Each disk can be up to 64TB in size
• PDs can have one writer and multiple readers
• Supports both SSD and HDD storage options
• SSD offers best throughput for I/O intensive applications
• PD is available in three storage types:
• Zonal
• Regional
• Local
Google Cloud Storage Services – Use Cases
GCP Storage Services - Use Cases

Product Storage Type Key Feature Use Case

Google Cloud Object storage Scalable, durable and Centralized storage for
Storage long-term storage frequently and infrequently
accessed files
Persistent Disks Block storage Attached to GCE VMs Dedicated attached storage
for apps running in VMs
based on HDDs and SSDs
Cloud Filestore File system NFS fileshare for GCE NAS-like shared file storage
VMs with standard UNIX
permissions
GCP Hybrid Connectivity
Hybrid Connectivity

• Hybrid connectivity extends local data center to GCP

• Three GCP services enable hybrid connectivity:
• Cloud Interconnect
• Cloud VPN
• Peering
• Cloud Interconnect extends on-premises network to GCP via Dedicated or
Partner Interconnect
• Cloud VPN connects on-premises environment to GCP securely over the
internet through IPSec VPN
• Peering enables direct access to Google Cloud resources with reduced
Internet egress fee

Resource link: https://cloud.google.com/hybrid-connectivity/

Google Cloud Load Balancers
Google Cloud Load Balancing

• Load balancer distributes traffic across multiple GCE VMs in a single or

multiple regions
• There are two types of GCP load balancers:
• HTTP(S) load balancer
• Network load balancer
• HTTP(S) load balancer provides global load balancing
• Network load balancer balances regional TCP and UDP traffic
• Both types can be configured as internal or external load balancers
Google Cloud Load Balancing
GCP Network Service Tiers
GCP Network Service Tiers

• Network service tiers provide a choice of traffic optimization

• There are two service tiers:
• Premium Tier
• Standard Tier
• Premium Tier delivers traffic via Google's premium backbone
• Standard Tier uses regular connectivity based on ISP networks
• GCP uses premium tier as the default option

Resource link: https://cloud.google.com/network-tiers/docs/overview

Google Cloud Platform
Network Services

janakiram.com
Learning Objectives

• Overview of GCP Network Services

• Network Tiers
• Cloud Load Balancing
• VPC
• Hybrid Connectivity
Demo: Configuring Load Balancing
• Use Cases of Network Services
GCP Network Services
Overview of GCP Network Services

• Network services are one of the key building blocks of cloud

• GCP leverages Google’s global network for connectivity
• Customers can choose between standard and premium tiers
• Load balancers route the traffic evenly to multiple endpoints
• Virtual Private Cloud (VPC) offers private and hybrid networking
• Customers can extend their data center to GCP through hybrid
connectivity
GCP Network Services – Use Cases
 Use Cases of GCP Network Services

Product Key Feature Use Case

HTTP(S) Load Balancing Global load balancing of HTTP(S) CMS deployed in multiple regions
endpoints
TCP Load Balancing Regional load balancing of Distribute traffic evenly across
TCP/UDP endpoints gaming backend service
VPC Private networking within GCP Deploy GCE VMs that are not
exposed to the public internet
Cloud Interconnect Dedicated network to extend local Access cloud resources from local
data center applications with low latency
Cloud VPN Secure access to GCP resources Cheaper option to extend local data
through public internet center to cloud
Peering Directly access cloud resources Secure access to GCP and G Suite
with reduced egress fee resources via direct or carrier
peering
Virtual Private Cloud
Virtual Private Cloud

• VPC is a software defined network providing private networking for VMs

• VPC network is a global resource with regional subnets
• Each VPC is logically isolated from each other
• Firewall rules allow or restrict traffic within subnets
• Resources within a VPC communicate via IPV4 addresses
• VPC networks can be connected to other VPC networks through VPC
peering
• VPC networks are securely connected in hybrid environments using
Cloud VPN or Cloud Interconnect
Cloud IAM – Key Elements
Key Elements of Cloud IAM
• Resource – Any GCP resource
• Projects
• Cloud Storage Buckets
• Compute Engine Instances
• Permissions - Determines operations allowed on a resource
• <service>.<resource>.<verb>
• pubsub.subscriptions.consume
• compute.instances.insert
• Roles – A collection of permissions
• Compute.instanceAdmin
• compute.instances.start
• compute.instances.stop
• compute.instances.delete
• ….

• Users – Represents an identity

• Google Account
• Google Group
• G Suite Domain
• …
Cloud IAM Identity
Cloud IAM Users/Members

• Google account
• Service account
• Google group
• G Suite domain
• Cloud Identity domain
• allAuthenticatedUsers
• allUsers
Google Cloud Platform
Identity and Access
Management

janakiram.com
Learning Objectives

• Overview of identity and access management

• Key components of IAM
• Members
• Permissions
• Roles
Demo: Exploring Members, Roles, and Permissions
• Service Accounts
Demo: Exploring Service Accounts
• Where do you use IAM?
Overview of Cloud IAM
Overview of Cloud IAM

• IAM controls access by defining who (identity) has what access (role) for
which resource

Members Roles Permissions

[Who] [What] [Which]

• Cloud IAM is based on the principle of least privilege

• An IAM policy binds identity to roles which contains permissions
Google Cloud IAM
Cloud IAM Permissions
Cloud IAM Permissions

• Permissions determine the operations performed on a resource

• Correspond 1:1 with REST methods of GCP resources
• Each GCP resource exposes REST APIs to perform operations
• Permissions are directly mapped to each REST API
• Publisher.Publish() -> pubsub.topics.publish
• Permissions cannot be assigned directly to members/users
• One or more permissions are assigned to an IAM Role
Cloud IAM Roles
Cloud IAM Roles

• Primitive roles
• Owner
• Editor
• Viewer
• Predefined roles
• roles/pubsub.publisher
• roles/compute.admin
• roles/storage.objectAdmin
• Custom roles
• Collection of assorted set of permissions
• Fine-grained access to resources
Google Cloud IAM Service Accounts
Cloud IAM Service Accounts

• A special Google account that belongs to an application or VM

• Service account is identified by its unique email address
• Service accounts are associated with key-pairs used for authentication
• Two types of service accounts
• User managed
• Google managed
• Each service account is associated with one or more roles
When to use Cloud IAM?
Where do you use IAM?

• To share GCP resources with fine-grained control

• Selectively allow/deny permissions to individual resources
• Define custom roles that are specific to a team/organization
• Enable authentication of applications through service accounts
Google Cloud Bigtable
Cloud Bigtable

• Petabyte-scale, managed NoSQL database service

• Sparsely populated table that can scale to billions of rows and thousands
of columns
• Storage engine for large-scale, low-latency applications
• Ideal for throughput-intensive data processing and analytics
• An alternative to running Apache HBase column-oriented database in
VMs
• Acts as a storage engine for MapReduce operations, stream processing,
and machine-learning applications
Google Cloud Memorystore
Cloud Memorystore

• A fully-managed in-memory data store service for

Redis
• Ideal for application caches that provides sub-
millisecond data access
• Cloud Memorystore can support instances up to 300
GB and network throughput of 12 Gbps
• Fully compatible with Redis protocol
• Promises 99.9% availability with automatic failover
• Integrated with Stackdriver for monitoring
Google Cloud Platform
Database Services

janakiram.com
Learning Objectives

• Overview of GCP Database Services

• Cloud SQL
• Cloud Bigtable
• Cloud Spanner
• Cloud Memorystore
Demo: Provisioning Managed MySQL Database Instance
• Use Cases of Database Services
GCP Database Services
Overview of GCP Database Services

• GCP has managed relational and NoSQL database

services
• Traditional web and line-of-business apps may use
RDBMS
• Modern applications rely on NoSQL databases
• Web-scale, distributed applications need multi-region
databases
• In-memory database is used for accelerating the
performance of apps
Google Cloud Spanner
Cloud Spanner

• Managed, scalable, relational database service for regional and global

application data
• Scales horizontally across rows, regions, and continents
• Brings best of relational and NoSQL databases
• Supports ACID transactions and ANSI SQL queries
• Data is replicated synchronously with globally strong consistency
• Cloud Spanner instances run in one of the three region types:
• Read-write
• Read-only
• Witness
Google Cloud SQL
Google Cloud SQL

• Fully managed RDBMS service that simplifies set up, maintain, manage,
and administer database instances
• Cloud SQL supports three types of RDBMS
• MySQL
• PostgreSQL
• Microsoft SQL Server (Preview)
• A managed alternative to running RDBMS in VMs
• Cloud SQL delivers scalability, availability, security, and reliability of
database instances
• Cloud SQL instances may be launched within VPC for additional security
GCP Database Services – Use Cases
Use Cases

Product DB Type Key Feature Use Case

Google Cloud SQL Relational Supports MySQL, Traditional web applications

PostgreSQL, and MS and business applications
SQL Server
Google Cloud NoSQL Column-oriented Big data and machine
Bigtable NoSQL database learning workloads

Google Cloud RDBMS + NoSQL Globally distributed Geographically deployed

Spanner database with strong scalable applications with
consistency distributed database backend
Google Cloud In-memory Low latency Redis Accelerate retrieval of
Memorystore cache frequently accessed data
Google BigQuery
BigQuery

• Serverless, scalable cloud data warehouse

• Has an in-memory BI Engine and machine learning built in
• Supports standard ANSI:2011 SQL dialect for querying
• Federated queries can process external data sources
• Cloud Storage
• Cloud Bigtable
• Spreadsheets (Google Drive)
• Automatically replicates data to keep a seven-day history of changes
• Supports data integration tools like Informatica and Talend
Google Cloud Dataflow
Google Cloud Dataflow

• Managed service for transforming and enhancing data in stream and

batch modes
• Based on Apache Beam open source project
• Serverless approach automates provisioning and management
• Inbound data can be queried, processed, and extracted for target
environment
• Tightly integrated with Cloud Pub/Sub, BigQuery, and Cloud Machine
Learning
• Cloud Dataflow connector for Kafka makes it easy to integrate Apache
Kafka
Google Cloud Datalab
Google Cloud Datalab

• Interactive tool for data exploration, analysis,

visualization, and machine learning
• Runs on Compute Engine and may connect to multiple
cloud services
• Built on open source Jupyter Notebooks platform
• Enables analysis data on BigQuery, Cloud ML Engine,
and Cloud Storage
• Supports Python, SQL, and JavaScript languages
Google Cloud Dataproc
Google Cloud Dataproc

• Managed Apache Hadoop and Apache Spark cluster environments

• Automated cluster management
• Clusters can be quickly created and resized from three to hundreds of
node
• Move existing Big Data projects to GCP without redevelopment
• Frequent updates to Spark, Hadoop, Pig, and Hive
• Integrates with other GCP services like Cloud Dataflow and BigQuery
Google Cloud Platform
Data Analytics Services

janakiram.com
Learning Objectives

• Overview of GCP Data Analytics Services

• Cloud Pub/Sub
• Cloud Dataflow
• Cloud Dataproc
• Cloud Datalab
• BigQuery
Demo: Analyzing data with BigQuery
• Use Cases of Data and Analytics Services
GCP Data & Analytics Services
Overview of GCP Data Analytics Services

• Data analytics include ingestion, collection, processing, analyzing,

visualizing data
• GCP has a comprehensive set of analytics services
• Cloud Pub/Sub is used for ingesting data at scale
• Cloud Dataflow can process data in real-time or batch mode
• Cloud Dataproc is a Big Data service for running Hadoop and Spark jobs
• BigQuery is the data warehouse in the cloud
• Cloud Datalab is used for analyzing and visualizing data
Google Cloud Pub/Sub
Google Cloud Pub/Sub

• Managed service to ingest data at scale

• Based on the publishing/subscription pattern
• Global entry point to GCP-based analytics services
• Acts as a simple and reliable staging location for data
• Tightly integrated with services such as Cloud Storage and Cloud
Dataflow
• Supports at-least-once delivery with synchronous, cross-zone message
replication
• Comes with end-to-end encryption, IAM, and audit logging
GCP Data & Analytics Service – Use Cases
Use Cases
Product Service Type Key Feature Use Case

Google Cloud Ingestion High-speed ingestion Sensor data, telemetry, and

Pub/Sub of data logs

Google Cloud Stream and batch Process data coming ETL for business intelligence
Dataflow processing from Pub/Sub and and machine learning
data in GCS
Google Cloud MapReduce jobs Big Data processing MapReduce jobs
Dataproc based on Apache
Hadoop and Spark
Google Cloud Visualization Jupyter Notebooks Data exploration and
Datalab for interactive visualization
analysis
BigQuery Data warehouse Query large datasets Business intelligence
in ANSI SQL
GCP AI Building Blocks
GCP AI Building Blocks
Google AI Hub
Google Cloud AI Hub

• Hosted repository of plug-and-play AI components

• Makes it easy for data scientists and teams to collaborate
• Contains private and public content
• AI Hub includes
• Kubeflow Pipeline components
• Jupyter Notebooks
• TensorFlow modules
• VM Images
• Trained models
•…
Google AI Platform
Google AI Platform

• Covers the entire spectrum of machine learning pipelines

• Built on Kubeflow, an open source ML project based on Kubernetes
• Includes tools for data preparation, training, and inference
Google Cloud AutoML
Google Cloud AutoML
• Cloud AutoML enables training high-quality models
specific to a business problem
• Custom machine learning models without writing code
• Based on Google’s state-of-the-art machine learning
algorithms
• AutoML Services
• Sight
• Vision
• Video Intelligence
• Language
• Natural Language
• Translation
• Structure Data
• Tabular data
Google Cloud Platform
AI & ML Services

janakiram.com
Learning Objectives

• Overview of Machine Learning & Artificial Intelligence Services

• Cloud AI Building Blocks
• Cloud AutoML
• AI Platform
• AI Hub
Demo: Image Recognition with Cloud Vision API
• Use Cases of ML & AI Services
GCP AI & ML Services
Overview of GCP AI & ML Services

• AI Building Blocks provide AI through simple REST calls

• Cloud AutoML enables training models on custom
datasets
• AI Platform provides end-to-end ML pipelines on-premises
and cloud
• AI Hub is a Google hosted repository to discover, share,
and deploy ML models
• Google Cloud Platform offers comprehensive set of ML &
AI services for beginners and advanced AI engineers
GCP ML & AI Services – Use Cases
Use Cases of GCP ML & AI Services

Product Service Type Key Feature Use Case

Cloud Building Blocks REST API Endpoint Simple API for vision, Infuse AI into apps with one API call
language, and data

Cloud AutoML Models based on No-code approach to Train and deploy models custom
custom data training high-quality datasets
models
AI Platform ML Pipelines Open and portable Train ML models on-prem and
framework for ML deploy it in the cloud
AI Hub ML Artifact repository Sharable directory of Reuse existing TensorFlow models
various ML components shared by other users
Google Cloud Build
Google Cloud Build

• Managed service for source code build management

• The CI/CD tool running with Google Cloud Platform
• Supports building software written in any language
• Custom workflow to deploy across multiple target environments
• Tight integration with Cloud Source Repo, GitHub, and Bitbucket
• Supports native Docker integration with automated deployment to
Kubernetes and GKE
• Identifies vulnerabilities through efficient OS package scanning
GCP Dev Tools Integration
Integration with Developer Tools

• IDE plugins for popular development tools

• IntelliJ
• Visual Studio
• Eclipse
• Tight integration between IDEs and managed SCM, build services
• Automates generating configuration files and deployment scripts
• Makes GCP libraries and SDKs available within the IDEs
• Enhances developer productivity
Google Cloud Platform
DevOps Services

janakiram.com
Learning Objectives

• Overview of Developer Tools and DevOps Services

• Cloud Source Repositories
• Cloud Build
• Container Registry
• IDE Integration
Demo: Storing Docker Images in Container Registry
• Use Cases of Developer Tools and DevOps Services
GCP DevOps Services
Overview of GCP DevOps Services

• DevOps Services provide tools and frameworks for automation

• Cloud Source Repositories store and track source code
• Cloud Build automates continuous integration and deployment
• Container Registry acts as the central repository for storing, securing,
and managing Docker container images
• IDE and tools integration enables developer productivity
Google Container Registry
Container Registry

• Single location to manage container images and repositories

• Store images close to GCE, GKE, and Kubernetes clusters
• Secure, private, scalable Docker registry within GCP
• Supports RBAC to access, view, and download images
• Detects vulnerabilities in early stages of the software deployment
• Supports automatic lock-down of vulnerable container images
• Automated container build process based on code or tag changes
Google Cloud Source Repositories
Google Cloud Source Repositories

• Acts as a scalable, private Git repository

• Extends standard Git workflow to Cloud Build, Cloud Pub/Sub and
Compute services
• Unlimited private Git repositories that can mirror code from Github and
Bitbucket repos
• Triggers to automatically build, test, and deploy code
• Integrated regular expression-based code search
• Single source of code for deployments across GCE, GAE, GKE, and
Functions
GCP DevOps Services – Use Cases
Use Cases

Product Service Type Key Feature Use Case

Google Cloud Source Source Control Private source code repo Store code securely in the cloud
Repositories Management (SCM)

Google Cloud Build CI/CD Integrated workflow to Pipelines to deploy code

build and deploy code automatically from SCM

Google Container Private Container Private image registry Store images in the same region as
Registry Registry close to compute services GKE clusters
IDE Integration Developer Tools Developer productivity Manage and deploy apps from the
IDE
Google Cloud API Management
API Management

Apigee API API Analytics Cloud Endpoints

Platform
Google Cloud Hybrid & Multi-Cloud Services
Hybrid & Multi-Cloud

Traffic Director Stackdriver GKE On-Prem

Google Cloud IoT
Google Cloud IoT

Cloud IoT Core Edge TPU

Google Cloud Migration Tools
 Migration

Transfer Appliance Migrate for BigQuery Data

Compute Engine Transfer Service
Google Cloud Products & Services

https://cloud.google.com/products
Anthos
Dev/Test - Datacenter Staging - AWS

UAT - Azure Prod - GCP

Finance: On-prem Operations: On-prem + AWS

Legal: On-prem

HR: On-prem
IT: On-prem + GKE
 Meta
Control
Plane

• Cluster Lifecycle
• Deployments
• Configuration
• Policies
• Observability
• Maintenance
What is Anthos?

• Google’s multi-cloud and hybrid cloud platform based on Kubernetes

• Enables customers to run managed Kubernetes service (GKE) in a variety
of environments
• Anthos can be deployed in
• Google Cloud
• vSphere (on-premises)
• Amazon Web Services
• Microsoft Azure
• Non-GKE Kubernetes clusters can be attached to Anthos
• Delivers centralized management and operations for Kubernetes clusters
running diverse environments
Anthos Control Plane Anthos on GCP

Anthos on vSphere (On-premises)

Anthos on AWS

Anthos on Azure
 Users Admins

Cloud Run for Anthos Ingress for Anthos Anthos Config Management

Kubernetes
Anthos Service Mesh Apps
On GCP
Marketplace
Anthos Control Plane

Managed GKE Clusters Unmanaged Kubernetes Clusters

Google Cloud Platform
Enterprise Services

janakiram.com
Learning Objectives

• Google Cloud IoT

• API Management
• Hybrid and Multi-cloud
• Migration
Next Steps – Google Cloud Certification

• Associate Cloud Engineer • Professional Cloud Architect

• Professional Data Engineer
• Professional Cloud Developer
• Professional Cloud Network Engineer
• Professional Cloud Security Engineer

Resource link: https://cloud.google.com/certification/

Google Cloud Platform
Fundamentals

janakiram.com
Quick Recap
• The big picture of Google Cloud Platform
• Essential building blocks
• Compute
• Storage
• Network
• Identity Management
• Additional Services
• Databases
• Data & Analytics
• Artificial Intelligence & Machine Learning
• DevOps
• Other Services