Descubra cómo modernizar, administrar y monitorear aplicaciones con Kubernetes, ya sea que la aplicación se implemente on-premise o en Google Cloud. Este curso utiliza presentaciones y labs prácticos para ayudarte a explorar e implementar con Google Kubernetes Engine (GKE), GKE Connect, Istio service mesh y las capacidades de Anthos Config Management que te permitirán trabajar con aplicaciones modernas, incluso cuando estén divididas entre múltiples clústeres alojados por múltiples proveedores u on-premise.
Esta es una continuación de Architecting with Google Kubernetes Engine y necesitará experiencia práctica con las tecnologías cubiertas en ese curso para poder beneficiarse de este curso.
Objetivos
En este curso, los participantes aprenderán las siguientes habilidades:
- Deploy Istio service mesh control-plane and proxies using the Helm Kubernetes package manager or using the Istio on GKE add-on.
- Centrally observe, discover, and monitor your microservices-based applications across clusters using Istio service mesh adapters, including Prometheus, Grafana, or Kiali, or Stackdriver.
- Define and manage multi-cluster services, with ingress, using open-source Istio via shared and multi-control plane topologies.
- Connect and manage on-premises clusters, and workloads using GKE On-Prem.
- Enable consistent policy enforcement across multi-cluster environments using a configuration-as-code approach and your secure Git repository.
Público
Este curso está dirigido a los siguientes participantes:
- Technical employees using GCP, including customer companies, partners and system integrators: deployment engineers, cloud architects, cloud administrators, system engineers , and SysOps/DevOps engineers.
- Individuals using GCP to create, integrate, or modernize solutions using secure, scalable microservices architectures in hybrid environments.
Prerrequisitos
Para aprovechar al máximo este curso, los participantes deben tener:
- Finalización de Google Cloud Platform Fundamentals o experiencia equivalente.
- Finalización de Architecting with Google Kubernetes Engine o experiencia equivalente.
Duración
2 dias
Inversión
Vea el valor actualizado y los próximos cierres para las clases abiertas en nuestra página de registro.
Si está interesado en una clase cerrada para su empresa, contáctenos.
Resumen del curso
El curso incluye presentaciones, demostraciones y laboratorios prácticos.
- Describe challenges of hybrid cloud
- Discuss modern solutions
- Describe the Anthos Technology Stack
- Understand Anthos GKE hybrid environments, with Admin and User clusters
- Register and authenticate remote Anthos GKE clusters in GKE Hub
- View and manage registered clusters, in cloud and on-premises, using GKE Hub
- View workloads in all clusters from GKE Hub
- Lab: Managing Hybrid Clusters using Kubernetes Engine
- Understand service mesh, and problems it solves
- Understand Istio architecture and components
- Explain Istio on GKE add on and it’s lifecycle, vs OSS Istio
- Understand request network traffic flow in a service mesh
- Create a GKE cluster, with a service mesh
- Configure a multi-service application with service mesh
- Enable external access using an ingress gateway
- Explain the multi-service example applications: Hipster Shop, and Bookinfo
- Lab: Installing Open Source Istio on Kubernetes Engine
- Lab: Installing the Istio on GKE Add-On with Kubernetes Engine
- Understand service mesh flexible adapter model
- Understand service mesh telemetry processing
- Explain Stackdriver configurations for logging and monitoring
- Compare telemetry defaults for cloud and on-premises environments
- Configure and view custom metrics using service mesh
- View cluster and service metrics with pre-configured dashboards
- Trace microservice calls with timing data using service mesh adapters
- Visualize and discover service attributes with service mesh
- Lab: Telemetry and Observability with Istio
- Understand the service mesh abstract model for traffic management
- Understand service mesh service discovery and load balancing
- Review and compare traffic management use cases and configurations
- Understand ingress configuration using service mesh
- Visualize traffic routing with live generated requests
- Configure a service mesh gateway to allow access to services from outside the mesh
- Apply virtual services and destination rules for version-specific routing
- Route traffic based on application-layer configuration
- Shift traffic from one service version to another, with fine-grained control, like a canary deployment
- Lab: Managing Traffic Routing with Istio and Envoy
- Understand authentication and authorization in service mesh
- Explain mTLS flow for service to service communication
- Adopt mutual TLS authentication across the service mesh incrementally
- Enable end-user authentication for the frontend service
- Use service mesh access control policies to secure access to the frontend service
- Lab: Managing Policies and Security with Service Mesh
- Understand the challenge of managing resources across multiple clusters
- Understand how a Git repository is as a configuration source of truth
- Explain the Anthos Config Management components, and object lifecycle
- Install and configure Anthos Config Management, operators, tools, and related Git repository
- Verify cluster configuration compliance and drift management
- Update workload configuration using repo changes
- Lab: Managing Policies in Kubernetes Engine using Anthos Config
- Understand how multiple clusters work together using DNS, root CA, and service discovery
- Explain service mesh control-plane architectures for multi-cluster
- Configure a multi-service application using service mesh across multiple clusters with multiple control-planes
- Configure a multi-service application using service mesh across multiple clusters with a shared control-plane
- Configure service naming/discovery between clusters
- Review ServiceEntries for cross-cluster service discovery
- Migrate workload from a remote cluster to an Anthos GKE cluster
- Lab: Configuring GKE for Multi-Cluster Operation with Istio
- Lab: Configuring GKE for Shared Control Plane Multi-Cluster Operation