Bash, the Crucial Exams Chat Bot
AI Bot
Networking and Security (GCP PCA) Flashcards
GCP Professional Cloud Architect Flashcards
| Front | Back |
| How does GCP address data encryption | GCP encrypts data at rest and in-transit by default. |
| How does route priority work in GCP | Lower numbers represent higher priority, with forwarding decisions based on the most specific and prioritized rule. |
| What are custom static routes in GCP | Static routes manually dictate the specific routing rules for network traffic. |
| What are dynamic routes in GCP | Dynamic routes automatically adapt based on routing information learned through BGP (Border Gateway Protocol). |
| What are GCP security best practices for IAM | Use the principle of least privilege and apply resource tagging. |
| What are Shared VPCs in GCP | A way of sharing a VPC across multiple GCP projects. |
| What are the four types of load balancing in GCP | HTTP(S), SSL Proxy, TCP Proxy, and UDP load balancing. |
| What are the three types of firewalls in GCP | Ingress, Egress, and implied. |
| What does a firewall rule control in GCP | Firewall rules control the traffic allowed into or out of VPC network resources. |
| What does a peering connection provide in GCP | Direct and private connectivity between two distinct VPC networks. |
| What does a service account represent in GCP | A service account is an identity for applications or services to access other resources. |
| What does egress traffic refer to | Traffic going out of your network or resources. |
| What does ingress traffic refer to | Traffic coming into your network or resources. |
| What is a flow log | Flow logs capture information on the traffic flows to and from network interfaces in a VPC. |
| What is a load balancer in GCP | A service that distributes traffic across multiple backend instances for scalability and resilience. |
| What is a VPC in GCP | A Virtual Private Cloud (VPC) is a virtualized network dedicated to your GCP project. |
| What is a VPN in GCP | Virtual Private Network (VPN) securely connects your on-premises networks to your GCP VPCs. |
| What is hybrid networking in the context of GCP | A setup that connects GCP networks with on-premises or other cloud environments. |
| What is one disadvantage of VPC peering | Transitive routing is not supported, requiring multiple peerings for complex setups. |
| What is the benefit of using a Custom mode subnet | Custom mode gives you full control over subnet ranges and regional placement. |
| What is the benefit of using a Shared VPC | Improved resource management and network centralization when working with multiple GCP projects. |
| What is the default subnet mode for a new VPC in GCP | Auto mode. |
| What is the difference between an internal and external IP address in GCP | Internal IPs are used within a VPC, and external IPs are accessible from the internet. |
| What is the difference between standard and premium network tiers | Premium tier provides global, low-latency network routes, and standard tier offers regional, cost-effective routing. |
| What is the main difference between internal and external load balancers | Internal load balancers distribute traffic within a network, while external ones distribute incoming internet traffic. |
| What is the maximum number of networks you can have per project in GCP | By default, you can have up to five networks per project. |
| What is the purpose of a Service Perimeter in GCP | To enforce boundaries around services for enhanced security. |
| What is the purpose of GCP firewall tags | Tags are used to apply specific firewall rules to targeted resources. |
| What is the purpose of subnet modes in GCP | Subnet modes, Auto and Custom, define how subnets are created and managed. |
| What is the role of a subnet in a VPC | A subnet allows you to create logical separation of your VPC resources and assign IP ranges. |
| What is the role of Cloud Identity-Aware Proxy (IAP) | IAP allows you to securely control access to your application through identity checks. |
| What is the role of Cloud Router in hybrid networking | To dynamically manage routing information in your hybrid network. |
| What is the role of Private Google Access | It allows VMs in a private subnet to access Google APIs and services without public IPs. |
| What is the use of Cloud Armor | Cloud Armor helps protect against DDoS attacks and application-level threats. |
This deck delves into VPC, subnets, firewalls, load balancing, hybrid networking, and security best practices within GCP environments.