What is Image? Virtual machines (VMs) in cloud are created from a template called a virtual server image. Virtual images can be sun up on cloud providers to do computing operations without purchasing hardware or software. what’s hardening? Hardening is the process of strengthening a system to reduce the exposure surface and attack vectors using […]
Introduction to GCP & the Cloud Common personal uses of Cloud Services Backups & Sharing Between Mobile Device, Home computer and Work Computer Key Feature: Fault Tolerant & High Availability Common Enterprise Uses of Cloud Services Key Feature: Scalability & Elasticity Compute Engine – Application hosting on Virtual Server/Computer – “Instance“ Computer / Server (Application […]
Containers in the Cloud Infrastructure as a Service allows you to share compute resources with other developers by virtualizing the hardware using virtual machines The smallest unit of compute is an app with its VM App Engine
Getting Started with Google Kubernetes Engine Kubernetes: a software layer that sits between applications and hardware infrastructure Introduction to Google Cloud Cloud computing has five fundamental attributes On-demand & self-service: No human intervention needed to get resources Broad network access: resources are accessible over a network from any location Resource pooling: Provider shares resources to […]
Interconnecting Networks Cloud VPN Securely connects on-premises network to GCP VPC network using an IPSec VPN tunnel IPSec: IPsec is commonly used to secure VPNs. While a VPN creates a private network between a user’s computer and the VPN server, IPsec protocols implement a secure network that protects VPN data from outside access Useful for low-volume […]
Identity and Access Management (IAM) IAM (Identity Access Management) Authentication & Authorisation Who? Can do what? On which resource? IAM resource hierarchy Organization -> Folders -> Projects -> Resources Organization Root node for GC resources Roles: Organization Admin: Control over all cloud resources; useful for auditing Project Creator: Controls project creation; control over who can […]
Content Virtual Networks (VPCs) Projects, networks, subnets Firewall rules and routes Virtual Machines Virtual machines, service accounts, differentiations Virtual Machines in the Cloud Virtual Private Cloud Networking (VPC) Each VPC network is contained in a GCP project Connect your GCP resources to each other and to the internet Google Cloud VPC networks are global; subnets […]
Google Cloud Pillars Compute Storage Networking Security Compute GCE (VM) – highly customized GKE App Engineer Cloud Functions Cloud Run Introducing Google Cloud What is Cloud Computing? On-demand self-service – No human intervention needed to get resources Broad network access – Access from anywhere Resource pooling – Provide shares resources to customers Rapid elasticity – […]
Introduction to AWS Security and Identity Data Protection Amazon Macie: discover and protect sensitive data AWS Key Management Service: store and manage encryption keys AWS CloudHSM: Hardware based key storage AWS Certificate Manager: provision, manage and deploy SSL and TLS security certificates AWS Secrets Manager: rotate, manage and retrieve secrets Infrastructure Protection AWS Shield: denial […]
Say goodbye to 2019, welcome 2020! ^_^
Yujin's Amusement Park