文章目录

1. 1. 4-GCP Learning Path Course1
   1. 1.1. Module overview
   2. 1.2. Case study format
   3. 1.3. Case study about the role of a Professional Cloud Architect
   4. 1.4. Architect a solution
      1. 1.4.1. existing env
      2. 1.4.2. biz requirement
      3. 1.4.3. tech requirement
      4. 1.4.4. Proposal
      5. 1.4.5. Migrate plan
      6. 1.4.6. question steps
      7. 1.4.7. question 3
      8. 1.4.8. question 4
      9. 1.4.9. question 9
   5. 1.5. Quiz type
   6. 1.6. Quiz
      1. 1.6.1. question1 network
      2. 1.6.2. question2(wrong) GKE
      3. 1.6.3. question3(wrong) Network
      4. 1.6.4. question4 GKE
      5. 1.6.5. question5(wrong) Deploy
      6. 1.6.6. question6 VM
      7. 1.6.7. question7(wrong) DEV
      8. 1.6.8. question8 Network
      9. 1.6.9. question9（wrong) DATA
      10. 1.6.10. question10 DATA
   7. 1.7. Final quiz

4-GCP Learning Path Course1

Course ‘Preparing for your Professional Cloud Architect Journey’

Module overview

https://www.cloudskillsboost.google/course_sessions/3680060/video/378728

the goal of this course is to help you better structure your preparation time for the exam. You’ll learn about the scope of each exam section, assess your current knowledge and skills through diagnostic questions, and review where to find additional tools and resources to include in your study plan.

• Design and plan a cloud solution architecture
• Design for security and compliance
• Manage implementations of cloud architecture
• Manage and provision the cloud solution infrastructure
• Analyze and optimize technical and business process
• Ensure solution and operations reliabitliy

Case study format

The case studies follow a similar format. Each one includes

1. a company overview
2. a description of the solution concept
3. information about the existing technical environment
4. lists that outline business and technical requirements
5. an executive statement that highlights priorities and challenges.

Case study about the role of a Professional Cloud Architect

In this course, you’ll examine the role of a Professional Cloud Architect from the perspective of someone who is working for Cymbal Direct, a fictional company.

1. Cymbal Direct has been dealing with scaling issues and wants to implement solutions to help dynamically surge delivery during peak periods for customers, while also personalizing customer service experiences. Cymbal Direct also wants to facilitate large-scale business-to-business (B2B) orders and better predict customer demand and trends. One of Cymbal Direct’s concerns with B2B partners is ensuring security of partner business plans.
2. Cymbal Direct also wants to help partners integrate with APIs to make orders and specify customizations.
3. Cymbal Direct is considering how to integrate social media into its platform. Cymbal Direct’s marketing department wants to highlight posts on social media platforms that feature its products directly on Cymbal Direct’s product pages. However, marketers are concerned about the possibility of having inappropriate content accidentally displayed to customers.

As you explore the role of a Professional Cloud Architect at Cymbal Direct throughout this course, you’ll focus on three key initiatives.

1. The beta Delivery by Drone initiative lets licensed drone pilots deliver shoes and sandals to customers. DBD allows customers to place their orders and then receive their shoes quickly. The drones stream real-time video to their pilots, as well as their coordinates, so that customers can see the location of their deliveries on a map.
2. Cymbal Direct’s second initiative is to release official APIs for partners. Cymbal Direct wants to publish APIs in a controllable, versionable way, with the ability to track,secure, and monetize. Cymbal Direct’s social integration service highlights images hashtagged with their products, but only after machine learning ensures that the images are of its products and do not have any inappropriate content.
3. The social media highlighting service is currently in the proof-of-concept phase. Built by a developer in their own time after hours as an experiment, it garnered a lot of excitement and interest, especially from the marketing team. However, during one of the internal demos, inappropriate images were included in the product gallery.

As a Professional Cloud Architect at Cymbal Direct, your role involves translating the business and technical requirements into a real-world implementation, often based on an existing environment. The architect creates the blueprint that allows an organization to leverage the power of Google Cloud.

As you continue through this course, you’ll explore the role of a Professional Cloud Architect as Cymbal Direct defines the solution architecture for its cloud environment. We’ll use this scenario to illustrate the types of considerations and tasks that correspond to each section of the exam guide. Cymbal Direct’s business and technical needs will also provide context for many of the diagnostic questions you’ll encounter along the way and highlight areas that you should spend more time learning about.

Architect a solution

1. Design solution architecture to meet biz requirement
2. Design to meet tech requirement
3. Design network, storage, and compute resources
4. create a migration plan
5. Envisioning the future solution improvements

existing env

1. Cymba Direct’s delivery by drone project has a website frontend, pilot, and truck management system, all of which run on Kubernetes. (
   Cymba Direct的无人机交付项目有一个网站前端、飞行员和卡车管理系统，所有这些都在Kubernetes上运行。)
   Positional data for drones and trucks is stored in a MongoDB cluster. Drones are connected to VMs through a stateful connection and stream video through Real-time Messaging Protocol (RMTP) to the pilots, as well as commands from the pilots飞行员 to the drones无人机.
2. For the purchase and product APIs project, the APIs are built into monolithic单体 apps that were not designed for partner integration. The APIs are running on Ubuntu Linux VMs.
3. The social media highlighting app is currently a proof of concept. For example, what could you use as a potential solution for Redis? You could do a simple lift and shift(简单迁移到云，也叫rehost。再高级就是re-architect) and run a VM with Redis on it. Or maybe you should consider using Memorystore, which is Google’s managed Redis implementation.

biz requirement

1. Cymbal Direct’s management wants to ensure that the company’s applications can easily scale to handle demand so that Cymbal Direct can expand to more test markets.
2. Business leaders also want to: Streamline development for application modernization and new features and products.
3. Ensure that developers spend as much time on core business functionality as possible, without having to worry about scalability.
4. Let partners order directly through an API.
5. Get a production version of the social media highlighting service functional, while they ensure that no inappropriate content is distributed.

tech requirement

1. managed services
2. deploy container-based workloads to testing and production environments
3. a highly scalable environment.
4. Standardize on containers where possible
5. let existing virtualization infrastructure run without a re-write
6. slowly refactored over time.
7. Securely allow partner integration.
8. Allow for streaming of IoT data from drones.

Proposal

still need to check whether there are any limiting factors, such as stateful applications, that are not currently supported in Cloud Run. Cymbal Direct has chosen to use GKE initially because it already runs Kubernetes.

Architect query website: https://cloud.google.com/architecture

Migrate plan

question steps

question 3

1. In this case, because the instances need to store persistent data locally, you can’t use preemptible machines（it will delete every day）, which eliminates B and D.

2. an e2-standard-8 instance will have the appropriate amount of memory. However, this instance type will have more CPU than necessary and incur additional unnecessary costs.

3. That leaves C as the correct answer. Custom instances are a good way to optimize costs because you don’t have to pay for resources you don’t need. Remember that the standard instance sizes are based on what makes sense for most general purpose applications, but your environment may differ.

question 4

1. You can eliminate A because default mode networks create subnets for you automatically in each zone and could allow people to accidentally provision resources in other regions
2. eliminate B because auto mode networks also create subnets for you automatically in each zone.
3. eliminate D because subnets are regional, not zonal(region > zone). That leaves C as the correct answer.A custom mode VPC network does not automatically create subnets. This type of network provides you with complete control over its subnets and IP address ranges.You decide which subnets to create, in regions you choose, and which IP address ranges you use for subnets, but only if they fall within the RFC 1918 address space. RFC 1918 Class B uses the 172.16.x.x address space.
4. detail network explaination in : Cloud\GCP\GCP-Product-Network\1-GCP-Network-Subnet.md

question 9

term: question stem(题干)

1. eliminate C because Cloud Build lets you build Docker-compatible containers, but you can’t use it to automate the importing of VMs. You can also
2. eliminate D because you can’t use Migrate for Compute Engine to create containers.
3. Migrate to Containers (Migrate for Anthos) uses containers in GKE to migrate the VMs; It does not use Compute Engine instances. So, you can eliminate B.
4. This leaves you with A as the correct answer. You must initially create a GKE cluster. Then you can use Migrate to Containers (Migrate for Anthos) to set up the cluster and import the VMs. Migrate to Containers (Migrate for Anthos) is a very powerful tool that can be used to import VMs to GKE. It automates the configuration of a GKE cluster and the importing of the VMs.

Quiz type

1. Designing a solution infrastructure that meets business requirements (quiz 10, 7)
2. Designing a solution infrastructure that meets technical requirements(quiz 6 )
3. Designing network, storage, and compute resources(quiz 1, 9, 3, 8, 2)
4. Creating a migration plan(quiz 5)
5. Envisioning future solution improvements(quiz 4)

Quiz

question1 network

You are creating a new project. You plan to set up a Dedicated interconnect between two of your data centers in the near future and want to ensure that your resources are only deployed to the same regions where your data centers are located. You need to make sure that you don’t have any overlapping IP addresses that could cause conflicts when you set up the interconnect. You want to use RFC 1918 class B address space. What should you do?

a. Create a new project, delete the default VPC network, set up a custom mode VPC network, and then use IP addresses in the 172.16.x.x address range to create subnets in your desired regions.

b. Create a new project, delete the default VPC network, set up an auto mode VPC network, and then use the default 10.x.x.x network range to create subnets in your desired regions.

c. Create a new project, leave the default network in place, and then use the default 10.x.x.x network range to create subnets in your desired regions.

d. Create a new project, delete the default VPC network, set up the network in custom mode, and then use IP addresses in the 192.168.x.x address range to create subnets in your desired zones. Use VPC Network Peering to connect the zones in the same region to create regional networks.

• I choose A. (correct)

need to know three type ip, whether custom mode VPC, how to inter connect, regional network need extra setup?

question2(wrong) GKE

You are working with a client who is using Google Kubernetes Engine (GKE) to migrate applications from a virtual machine–based environment to a microservices-based architecture. Your client has a complex legacy application that stores a significant amount of data on the file system of its VM. You do not want to re-write the application to use an external service to store the file system data. What should you do?

a. In Cloud Shell, create a YAML file defining your StatefulSet called statefulset.yaml. Create a StatefulSet in GKE by running the command kubectl apply -f statefulset.yaml

b. In Cloud Shell, create a YAML file defining your Container called build.yaml. Create a Container in GKE by running the command gcloud builds submit –config build.yaml .

c. In Cloud Shell, create a YAML file defining your Deployment called deployment.yaml. Create a Deployment in GKE by running the command kubectl apply -f deployment.yaml

d. In Cloud Shell, create a YAML file defining your Pod called pod.yaml. Create a Pod in GKE by running the command kubectl apply -f pod.yaml

• I choose B. (wrong)

my thought: use Cloud Build from VM to pod?

Incorrect. A container must be run within a pod. Cloud Build is used to build a container image using either a YAML file or a Dockerfile. The container can then be run in Kubernetes by referencing that image. 
May C(incorrect):
may D(incorrect): A Pod is the smallest unit of Deployment and contains one or more containers. A Pod doesn’t define how many containers must be running, so they’re generally managed by the Deployment or StatefulSet.

• Choose A
• A StatefulSet represents a group of persistent Pods. The YAML file will define a PersistentVolumeClaim (PVC) that allows for an application to retain state. A StatefulSet is commonly used with applications like databases. StatefulSet是什么？顾名思义，有状态的集合，管理所有有状态的服务，比如MySQL、MongoDB集群等。
• StatefulSet 特点
  Pod一致性：包含次序（启动、停止次序）、网络一致性。此一致性与Pod相关，与被调度到哪个node节点无关；
  稳定的次序：对于N个副本的StatefulSet，每个Pod都在[0，N)的范围内分配一个数字序号，且是唯一的；
  稳定的网络：Pod的hostname模式为( s t a t e f u l s e t 名 称 ) − (statefulset名称)-(statefulset名称)−(序号)；
  稳定的存储：通过VolumeClaimTemplate为每个Pod创建一个PV。删除、减少副本，不会删除相关的卷。

question3(wrong) Network

Cymbal Direct’s employees will use Google Workspace. Your current on-premises network cannot meet the requirements to connect to Google’s public infrastructure. What should you do?

a. Order a Partner Interconnect from a Google Cloud partner, and ensure that proper routes are configured.

b. Connect the network to a Google point of presence, and enable Direct Peering.

c. Order a Dedicated Interconnect from a Google Cloud partner, and ensure that proper routes are configured.

d. Connect the on-premises network to Google’s public infrastructure via a partner that supports Carrier Peering.

• I choose B(wrong)

my thought: Instead of Carrier Peering, the recommended methods of access to Google Cloud are Partner Interconnect

Incorrect. Cymbal Direct’s on-premises network cannot meet the requirements for peering. 
May a(incorrect): A Partner Interconnect allows access to your VPC network via a partner.This would allow access between on-premises and your internal IP addresses, which greatly exceeds the scope and does not follow the principle of least privilege.
may c(incorrect): A Dedicated Interconnect connects a data center to your VPC.

• Choose D
• Carrier Peering allows using a Google partner to connect to Google public infrastructure, such as Workspace or YouTube.

question4 GKE

Cymbal Direct has created a proof of concept for a social integration service that highlights images of its products from social media. The proof of concept is a monolithic application running on a single SuSE Linux virtual machine (VM). The current version requires increasing the VM’s CPU and RAM in order to scale. You would like to refactor the VM so that you can scale out instead of scaling up. What should you do?

a. Make sure that the application declares any dependent requirements in a requirements.txt or equivalent statement so that they can be referenced in a startup script, and attach external persistent volumes to the VMs.

b. Make sure that the application declares any dependent requirements in a requirements.txt or equivalent statement so that they can be referenced in a startup script. Specify the startup script in a managed instance group template, and use an autoscaling policy.

c. Move the existing codebase and VM provisioning scripts to git, and attach external persistent volumes to the VMs.

d. Use containers instead of VMs, and use a GKE autoscaling deployment.

• I choose D(correct)

scale shold use GKE.

question5(wrong) Deploy

You are working in a mixed environment of VMs and Kubernetes. Some of your resources are on-premises, and some are in Google Cloud. Using containers as a part of your CI/CD pipeline has sped up releases significantly. You want to start migrating some of those VMs to containers so you can get similar benefits. You want to automate the migration process where possible. What should you do?

a. Manually create a GKE cluster. Use Cloud Build to import VMs and convert them to containers.

b. Use Migrate for Anthos to automate the creation of Compute Engine instances to import VMs and convert them to containers.

c. Manually create a GKE cluster, and then use Migrate for Anthos to set up the cluster, import VMs, and convert them to containers.

d. Use Migrate for Compute Engine to import VMs and convert them to containers.

• I choose A.

remember that need mannually create cluster. set up cluster seems can’t. so A. need to figure out all option in this question.

Cloud Build lets you build Docker-compatible containers, but you can’t use it to automate the importing of VMs.

• Answer is C

question6 VM

Cymbal Direct developers have written a new application. Based on initial usage estimates, you decide to run the application on Compute Engine instances with 15 Gb of RAM and 4 CPUs. These instances store persistent data locally. After the application runs for several months, historical data indicates that the application requires 30 Gb of RAM. Cymbal Direct management wants you to make adjustments that will minimize costs. What should you do?

a. Stop the instance, and then use the command gcloud compute instances set-machine-type VM_NAME –machine-type 2-custom-4-30720. Start the instance again.

b. Stop the instance, and then use the command gcloud compute instances set-machine-type VM_NAME –machine-type e2-standard-8. Set the instance’s metadata to: preemptible: true. Start the instance again.

c. Stop the instance, and then use the command gcloud compute instances set-machine-type VM_NAME –machine-type e2-standard-8. Start the instance again.

d. Stop the instance, and then use the command gcloud compute instances set-machine-type VM_NAME –machine-type 2-custom-4-30720. Set the instance’s metadata to: preemptible: true. Start the instance again.

• I choose A. (correct)

figure out preemptible: maybe deleted VM any time. remember CPU only need 4, so A or C to choose.

question7(wrong) DEV

Customers need to have a good experience when accessing your web application so they will continue to use your service. You want to define key performance indicators (KPIs) to establish a service level objective (SLO). Which KPI could you use?

a. Low latency for > 85% of requests when aggregated over 1 minute

b. Eighty-five percent of requests succeed when aggregated over 1 minute

c. Eighty-five percent of customers are satisfied users

d. Eighty-five percent of requests are successful

• I choose A. (wrong)

Incorrect. KPIs must be specific and measurable. The word ‘low’ does not provide enough information to determine whether latency is acceptable. You should be able to compare your measurement against a threshold value to determine whether it is acceptable. may b?

question8 Network

Cymbal Direct is working with Cymbal Retail, a separate, autonomous division of Cymbal with different staff, networking teams, and data center. Cymbal Direct and Cymbal Retail are not in the same Google Cloud organization. Cymbal Retail needs access to Cymbal Direct’s web application for making bulk orders, but the application will not be available on the public internet. You want to ensure that Cymbal Retail has access to your application with low latency. You also want to avoid egress network charges if possible. What should you do?

a. Specify Cymbal Direct’s project as the Shared VPC host project, and then configure Cymbal Retail’s project as a service project.

b. If Cymbal Retail does not have access to a Google Cloud data center, use Carrier Peering to connect the two networks.

c. Verify that the subnet range Cymbal Retail is using doesn’t overlap with Cymbal Direct’s subnet range, and then enable VPC Network Peering for the project.

d. Verify that the subnet Cymbal Retail is using has the same IP address range with Cymbal Direct’s subnet range, and then enable VPC Network Peering for the project.

• I choose C.(correct)

need to know all option in this question.

Correct! VPC Peering allows for shared networking between organizations.

question9（wrong) DATA

Cymbal Direct is evaluating database options to store the analytics data from its experimental drone deliveries. You’re currently using a small cluster of MongoDB NoSQL database servers. You want to move to a managed NoSQL database service with consistent low latency that can scale throughput seamlessly and can handle the petabytes of data you expect after expanding to additional markets. What should you do?

a. Extract the data from MongoDB. Insert the data into Firestore using Native mode.

b. Create a Bigtable instance, extract the data from MongoDB, and insert the data into Bigtable.

c. Extract the data from MongoDB. Insert the data into Firestore using Datastore mode.

d. Extract the data from MongoDB, and insert the data into BigQuery.

• I choose D(wrong)

because question mention scaling, so should be Big related, and NoSql, so BigQuery.

Incorrect. BigQuery is used for Enterprise data warehouse and building reports and extracting insights. Bigtable meets the requirements for consistent low latency, scaling throughput seamlessly, and petabyte-scale. may B

question10 DATA

Cymbal Direct drones continuously send data during deliveries. You need to process and analyze the incoming telemetry data. After processing, the data should be retained, but it will only be accessed once every month or two. Your CIO has issued a directive to incorporate managed services wherever possible. You want a cost-effective solution to process the incoming streams of data. What should you do?

a. Ingest data with ClearBlade IoT Core, and then publish to Pub/Sub. Use BigQuery to process the data, and store it in a Standard Cloud Storage bucket.

b. Ingest data with ClearBlade IoT Core, and then publish to Pub/Sub. Use Dataflow to process the data, and store it in a Nearline Cloud Storage bucket.

c. Ingest data with ClearBlade IoT Core, process it with Dataprep, and store it in a Coldline Cloud Storage bucket.

d. Ingest data with ClearBlade IoT Core, and then store it in BigQuery.

• I choose B(correct)

only process every month or two, so storage can save cost, but the period haven’t expanded to half year.

Correct! Dataflow is a fully managed service that can be used to process both streams and batches of data. Nearline is a good fit because the data could be accessed every month.

Final quiz

1. If you have a business requirement to minimize costs, what are two things you could do?

   a. Use a managed service

   Incorrect. While a managed service can save money, it may be more expensive in some instances. The benefit could be more in simplifying and reducing administration.

   b. Do not run instances when they are not being used

   Correct. Only running, and thus paying for, instances when they are needed, is a great way to save costs. Using tools like GKE autoscaling clusters, or managed instance groups are a great way to save money.

   c. Migrate to Kubernetes from VMs

   Incorrect. While containers are generally more efficient than VMs, migrating to kubernetes in and of itself does not save money.

   d. Cap costs by creating a budget in Google Cloud

   Incorrect. Creating a budget can alert you to higher spending, but it does not cap it.

   e. Follow Google’s rightsizing recommendations

   Correct. Google will evaluate your instance’s usage, and make recommendations on how to save money or improve performance by resizing them.

2. What could Cymbal Direct use to estimate costs for their Google Cloud environment?

   a. KPIs

   b. ROI

   c. Cloud Pricing Calculator

   d. Average Compute Instance CPU

   Correct! The Cloud pricing calculator allows you to estimate the costs for Google Cloud Products and Services.