Architecting with Google Kubernetes Engine Training

Course Outline

Duration: 3 Days
Price: R16,000 (ex vat)
 

Module 1

• Introduction to Google Cloud Platform
• Use the Google Cloud Platform Console
• Use Cloud Shell
• Create GCP projects
• Understand the differences among GCP compute platforms
• Cloud Resource Manager, Quotas, Billing

Module 2

• Launching Workloads in Kubernetes Engine
• Understand the architecture of Kubernetes: pods, namespaces
• Understand the components of Kubernetes
• Create Docker containers using Google Container Builder
• Store container images in Google Container Registry
• Create a Kubernetes Engine cluster
• Install software using Helm charts

Module 3

• Debugging, Monitoring, Logging, Error Reporting
• Introspect Kubernetes containers
• View pod logs
• Troubleshoot common Kubernetes problems
• Use Stackdriver Kubernetes Monitoring
• Use Prometheus monitoring with Stackdriver

Module 4

• Scheduling and Autoscaling Workloads in Kubernetes Engine
• Apply labels
• Create and manage Deployments
• Perform rolling upgrades and rollbacks of Deployments
• Define Services
• Expose Services with LoadBalancers and NodePorts
• Run cron jobs
• Control pod execution with taints and tolerations
• Configure Kubernetes Engine clusters for autoscaling

Module 5

• Kubernetes and Google Cloud VPC Networking Fundamentals
• Understand the Kubernetes networking model
• Understand how Kubernetes networking differs from Docker networking
• Understand how Kubernetes networking differs from Compute Engine networking
• Understand VPC networks and subnets
• Understand load balancer types
• Use Kubernetes DNS

Module 6

• Persistent Data and Storage
• Use Secrets to isolate security credentials
• Use ConfigMaps to isolate configuration artefacts
• Push out and roll back updates to Secrets and ConfigMaps
• Configure Persistent Storage Volumes for Kubernetes Pods
• Use StatefulSets to ensure that claims on persistent storage volumes persist across restarts

Module 7

• Access Control and Security in Kubernetes and Kubernetes Engine
• Understand Kubernetes authentication and authorization
• Define Kubernetes RBAC roles and role bindings for accessing resources in namespaces
• Define Kubernetes RBAC cluster roles and cluster role bindings for accessing cluster-scoped resources
• Define Kubernetes pod security policies to only allow pods with specific security-related attributes to run
• Define Kubernetes network policies to allow and block traffic to pods Understand the structure of GCP IAM
• Define IAM roles and policies for Kubernetes Engine cluster administration
• Decide between building one larger cluster and many smaller clusters

Module 8

• Using GCP Managed Storage Services from Kubernetes Applications
• Understand the pros and cons of using a managed storage service versus self-managed containerized storage
• Understand use cases for Cloud Storage, and use Cloud Storage from within a Kubernetes application
• Understand use cases for Cloud SQL and Cloud Spanner and use them from within a Kubernetes application
• Understand use cases for Cloud Datastore, and use Cloud Datastore from within a Kubernetes application
• Understand use cases for Bigtable, and use Bigtable from within a Kubernetes application