Bash, the Crucial Exams Chat Bot
AI Bot
Networking and Security (GCP PCA) Flashcards
GCP Professional Cloud Architect Flashcards
| Front | Back |
| How does GCP address data encryption | GCP encrypts data at rest and in-transit by default. |
| How does route priority work in GCP | Lower numbers represent higher priority, with forwarding decisions based on the most specific and prioritized rule. |
| What are custom static routes in GCP | Static routes manually dictate the specific routing rules for network traffic. |
| What are dynamic routes in GCP | Dynamic routes automatically adapt based on routing information learned through BGP (Border Gateway Protocol). |
| What are GCP security best practices for IAM | Use the principle of least privilege and apply resource tagging. |
| What are Shared VPCs in GCP | A way of sharing a VPC across multiple GCP projects. |
| What are the four types of load balancing in GCP | HTTP(S), SSL Proxy, TCP Proxy, and UDP load balancing. |
| What are the three types of firewalls in GCP | Ingress, Egress, and implied. |
| What does a firewall rule control in GCP | Firewall rules control the traffic allowed into or out of VPC network resources. |
| What does a peering connection provide in GCP | Direct and private connectivity between two distinct VPC networks. |
| What does a service account represent in GCP | A service account is an identity for applications or services to access other resources. |
| What does egress traffic refer to | Traffic going out of your network or resources. |
| What does ingress traffic refer to | Traffic coming into your network or resources. |
| What is a flow log | Flow logs capture information on the traffic flows to and from network interfaces in a VPC. |
| What is a load balancer in GCP | A service that distributes traffic across multiple backend instances for scalability and resilience. |
| What is a VPC in GCP | A Virtual Private Cloud (VPC) is a virtualized network dedicated to your GCP project. |
| What is a VPN in GCP | Virtual Private Network (VPN) securely connects your on-premises networks to your GCP VPCs. |
| What is hybrid networking in the context of GCP | A setup that connects GCP networks with on-premises or other cloud environments. |
| What is one disadvantage of VPC peering | Transitive routing is not supported, requiring multiple peerings for complex setups. |
| What is the benefit of using a Custom mode subnet | Custom mode gives you full control over subnet ranges and regional placement. |
| What is the benefit of using a Shared VPC | Improved resource management and network centralization when working with multiple GCP projects. |
| What is the default subnet mode for a new VPC in GCP | Auto mode. |
| What is the difference between an internal and external IP address in GCP | Internal IPs are used within a VPC, and external IPs are accessible from the internet. |
| What is the difference between standard and premium network tiers | Premium tier provides global, low-latency network routes, and standard tier offers regional, cost-effective routing. |
| What is the main difference between internal and external load balancers | Internal load balancers distribute traffic within a network, while external ones distribute incoming internet traffic. |
| What is the maximum number of networks you can have per project in GCP | By default, you can have up to five networks per project. |
| What is the purpose of a Service Perimeter in GCP | To enforce boundaries around services for enhanced security. |
| What is the purpose of GCP firewall tags | Tags are used to apply specific firewall rules to targeted resources. |
| What is the purpose of subnet modes in GCP | Subnet modes, Auto and Custom, define how subnets are created and managed. |
| What is the role of a subnet in a VPC | A subnet allows you to create logical separation of your VPC resources and assign IP ranges. |
| What is the role of Cloud Identity-Aware Proxy (IAP) | IAP allows you to securely control access to your application through identity checks. |
| What is the role of Cloud Router in hybrid networking | To dynamically manage routing information in your hybrid network. |
| What is the role of Private Google Access | It allows VMs in a private subnet to access Google APIs and services without public IPs. |
| What is the use of Cloud Armor | Cloud Armor helps protect against DDoS attacks and application-level threats. |
Front
What is the role of Private Google Access
Click the card to flip
Back
It allows VMs in a private subnet to access Google APIs and services without public IPs.
Front
What is a flow log
Back
Flow logs capture information on the traffic flows to and from network interfaces in a VPC.
Front
What does a peering connection provide in GCP
Back
Direct and private connectivity between two distinct VPC networks.
Front
What is a VPN in GCP
Back
Virtual Private Network (VPN) securely connects your on-premises networks to your GCP VPCs.
Front
How does GCP address data encryption
Back
GCP encrypts data at rest and in-transit by default.
Front
What are GCP security best practices for IAM
Back
Use the principle of least privilege and apply resource tagging.
Front
What is the purpose of GCP firewall tags
Back
Tags are used to apply specific firewall rules to targeted resources.
Front
What is the default subnet mode for a new VPC in GCP
Back
Auto mode.
Front
What is hybrid networking in the context of GCP
Back
A setup that connects GCP networks with on-premises or other cloud environments.
Front
What is the maximum number of networks you can have per project in GCP
Back
By default, you can have up to five networks per project.
Front
How does route priority work in GCP
Back
Lower numbers represent higher priority, with forwarding decisions based on the most specific and prioritized rule.
Front
What does a firewall rule control in GCP
Back
Firewall rules control the traffic allowed into or out of VPC network resources.
Front
What are the four types of load balancing in GCP
Back
HTTP(S), SSL Proxy, TCP Proxy, and UDP load balancing.
Front
What does a service account represent in GCP
Back
A service account is an identity for applications or services to access other resources.
Front
What does ingress traffic refer to
Back
Traffic coming into your network or resources.
Front
What are custom static routes in GCP
Back
Static routes manually dictate the specific routing rules for network traffic.
Front
What does egress traffic refer to
Back
Traffic going out of your network or resources.
Front
What is the difference between an internal and external IP address in GCP
Back
Internal IPs are used within a VPC, and external IPs are accessible from the internet.
Front
What is the purpose of subnet modes in GCP
Back
Subnet modes, Auto and Custom, define how subnets are created and managed.
Front
What are dynamic routes in GCP
Back
Dynamic routes automatically adapt based on routing information learned through BGP (Border Gateway Protocol).
Front
What is the role of Cloud Identity-Aware Proxy (IAP)
Back
IAP allows you to securely control access to your application through identity checks.
Front
What are Shared VPCs in GCP
Back
A way of sharing a VPC across multiple GCP projects.
Front
What is the role of a subnet in a VPC
Back
A subnet allows you to create logical separation of your VPC resources and assign IP ranges.
Front
What is a VPC in GCP
Back
A Virtual Private Cloud (VPC) is a virtualized network dedicated to your GCP project.
Front
What is the benefit of using a Shared VPC
Back
Improved resource management and network centralization when working with multiple GCP projects.
Front
What are the three types of firewalls in GCP
Back
Ingress, Egress, and implied.
Front
What is the role of Cloud Router in hybrid networking
Back
To dynamically manage routing information in your hybrid network.
Front
What is the difference between standard and premium network tiers
Back
Premium tier provides global, low-latency network routes, and standard tier offers regional, cost-effective routing.
Front
What is the purpose of a Service Perimeter in GCP
Back
To enforce boundaries around services for enhanced security.
Front
What is a load balancer in GCP
Back
A service that distributes traffic across multiple backend instances for scalability and resilience.
Front
What is the main difference between internal and external load balancers
Back
Internal load balancers distribute traffic within a network, while external ones distribute incoming internet traffic.
Front
What is one disadvantage of VPC peering
Back
Transitive routing is not supported, requiring multiple peerings for complex setups.
Front
What is the use of Cloud Armor
Back
Cloud Armor helps protect against DDoS attacks and application-level threats.
Front
What is the benefit of using a Custom mode subnet
Back
Custom mode gives you full control over subnet ranges and regional placement.
1/34
This deck delves into VPC, subnets, firewalls, load balancing, hybrid networking, and security best practices within GCP environments.