Cloud Computing and Virtualisation

Architecting with Google Kubernetes Engine

  • Length 2 days
Course overview
View dates &
book now
Register interest

Why study this course

In this course students learn how to deploy and manage containerised applications on Google Kubernetes Engine (GKE) and the other tools on Google Cloud.

This course features a combination of lectures, demos, and hands-on labs to help you explore and deploy solution elements - including infrastructure components like pods, containers, deployments, and services - along with networks and application services. You’ll also learn how to deploy practical solutions, including security and access management, resource management, and resource monitoring.

Request Course Information


What you’ll learn

This course teaches participants the following skills:

  • Understand how software containers work.

  • Understand the architecture of Kubernetes.

  • Understand the architecture of Google Cloud.

  • Understand how pod networking works in Google Kubernetes Engine.

  • Create and manage Google Kubernetes Engine clusters using the Cloud Console and gcloud/ kubectl commands.

  • Launch, roll back and expose jobs in Kubernetes.

  • Manage access control using Kubernetes RBAC and Cloud IAM.

  • Manage pod security policies and network policies.

  • Use Secrets and ConfigMaps to isolate security credentials and configuration artifacts.

  • Understand Google Cloud choices for managed storage services.

  • Monitor applications running in Google Kubernetes Engine.


logo: Google Cloud Partner

Google Cloud at Lumify Work

Lumify Work is Australia's only national Google Cloud Authorised Training Partner. Get the skills needed to build, test, and deploy applications on this highly scalable infrastructure. Engineered to handle the most data-intensive work you can throw at it, Lumify Work can support you through training wherever you are in your Cloud adoption journey.


Who is the course for?

This course is intended for the following participants:

  • Cloud Architects, Administrators, and SysOps/DevOps Personnel

  • Individuals using Google Cloud to create new solutions or to integrate existing systems, application environments, and infrastructure with the Google Cloud.


Course subjects

Module 1: Introduction to Google Cloud

  • Use the Google Cloud Console

  • Use Cloud Shell

  • Define cloud computing

  • Identify Google Cloud compute services

  • Understand regions and zones

  • Understand the cloud resource hierarchy

  • Administer your Google Cloud resources

Module 2: Containers and Kubernetes in Google Cloud

  • Create a container using Cloud Build

  • Store a container in Container Registry

  • Understand the relationship between Kubernetes and Google Kubernetes Engine (GKE)

  • Understand how to choose among Google Cloud Compute platforms

Module 3: Kubernetes Architecture

  • Understand the architecture of Kubernetes: pods, namespaces

  • Understand the control-plane components of Kubernetes

  • Create container images using Google Cloud Build

  • Store container images in Google Container Registry

  • Create a Kubernetes Engine cluster

Module 4: Kubernetes Operations

  • Work with the kubectl command

  • Inspect the cluster and Pods

  • View a Pods console output

  • Sign in to a Pod interactively

Module 5: Deployment, Jobs, and Scaling

  • Deployments

  • Ways to create deployments

  • Services and scaling

  • Updating deployments

  • Rolling updates

  • Blue/green deployments

  • Canary deployments

  • Managing deployments

  • Jobs and CronJobs

  • Parallel Jobs

  • CronJobs

  • Cluster scaling

  • Downscaling

  • Node pools

  • Controlling pod placement

  • Affinity and Anti-Affinity

  • Pod placement example

  • Taints and tolerations

  • Getting software into your cluster

Module 6: GKE Networking

  • Introduction

  • Pod networking

  • Services

  • Finding services

  • Service types and load balancers

  • How load balancers work

  • Ingress resource

  • Container-native load balancing

  • Network security

Module 7: Persistent Data and Storage

  • Volumes

  • Volume types

  • The PersistentVolume abstraction

  • More on PersistentVolumes

  • StatefulSets

  • ConfigMaps

  • Secrets

Module 8: Access Control and Security in Kubernetes and Kubernetes Engine

  • Understand Kubernetes authentication and authorisation

  • Define Kubernetes RBAC roles and role bindings for accessing resources in namespaces

  • Define Kubernetes RBAC cluster roles and cluster role bindings for accessing cluster-scoped resources

  • Define Kubernetes pod security policies

  • Understand the structure of IAM

  • Define IAM roles and policies for Kubernetes Engine cluster administration

Module 9: Logging and Monitoring

  • Use Cloud Monitoring to monitor and manage availability and performance

  • Locate and inspect Kubernetes logs

  • Create probes for wellness checks on live applications

Module 10: Using Google Cloud Managed Storage Services from Kubernetes Applications

  • Understand pros and cons for using a managed storage service versus self-managed containerised storage

  • Enable applications running in GKE to access Google Cloud storage services

  • Understand use cases for Cloud Storage, Cloud SQL, Cloud Spanner, Cloud Bigtable, Cloud Firestore, and BigQuery from within a Kubernetes application

Module 11: Using CI/CD with Google Kubernetes Engine

  • CI/CD overview

  • CI/CD for Google Kubernetes Engine

  • CI/CD Examples


Prerequisites

To get the most out of this course, participants should have:


Terms & Conditions

The supply of this course by Lumify Work is governed by the booking terms and conditions. Please read the terms and conditions carefully before enrolling in this course, as enrolment in the course is conditional on acceptance of these terms and conditions.


Request Course Information

Awaiting course schedule

If you would like to receive a notification when this course becomes available, enter your details below.

Personalise your schedule with Lumify USchedule

Interested in a course that we have not yet scheduled? Get in touch, and ask for your preferred date and time. We can work together to make it happen.