| author | Oleksandr Gavenko <gavenkoa@gmail.com> |
| Sun, 17 Jan 2021 17:48:27 +0200 | |
| changeset 2503 | ef63c4afe404 |
| parent 2494 | 964ca46a467c |
| permissions | -rw-r--r-- |
| 2470 | 1 |
|
2 |
============== |
|
3 |
Google Cloud |
|
4 |
============== |
|
5 |
||
|
2494
964ca46a467c
List of Predefined roles with Permissions.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2493
diff
changeset
|
6 |
Essential documentation |
|
964ca46a467c
List of Predefined roles with Permissions.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2493
diff
changeset
|
7 |
======================= |
|
964ca46a467c
List of Predefined roles with Permissions.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2493
diff
changeset
|
8 |
|
|
964ca46a467c
List of Predefined roles with Permissions.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2493
diff
changeset
|
9 |
https://cloud.google.com/iam/docs/understanding-roles |
|
964ca46a467c
List of Predefined roles with Permissions.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2493
diff
changeset
|
10 |
List of Predefined roles with Permissions. |
|
964ca46a467c
List of Predefined roles with Permissions.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2493
diff
changeset
|
11 |
|
|
2482
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
12 |
gcloud filter syntax |
|
2493
e83847e718a0
Fixed RST section format.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2482
diff
changeset
|
13 |
==================== |
|
2482
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
14 |
|
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
15 |
All ``gcloud`` sub-commands ``list`` support ``--filter`` flag to select desired items. Read the |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
16 |
docs:: |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
17 |
|
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
18 |
gcloud topic filters |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
19 |
|
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
20 |
or: |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
21 |
|
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
22 |
https://cloud.google.com/sdk/gcloud/reference/topic/filters |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
23 |
``gcloud topic filters`` |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
24 |
|
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
25 |
Examples:: |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
26 |
|
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
27 |
gcloud compute instances list --filter='name~^stage-' --format='get(name)' |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
28 |
gcloud scheduler jobs list --filter='name~/stage-' --format='get(name)' |
|
b6e75fabe00b
gcloud filter syntax
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2476
diff
changeset
|
29 |
|
| 2470 | 30 |
Load balancer |
31 |
============= |
|
32 |
||
| 2472 | 33 |
https://cloud.google.com/load-balancing/docs/https/traffic-management |
34 |
Traffic management overview for external HTTP(S) load balancers. |
|
| 2470 | 35 |
https://cloud.google.com/compute/docs/reference/rest/v1/urlMaps |
36 |
URL map API. |
|
| 2475 | 37 |
https://cloud.google.com/compute/docs/reference/rest/v1/regionUrlMaps |
38 |
URL map API. |
|
| 2476 | 39 |
https://cloud.google.com/load-balancing/docs/l7-internal/traffic-management |
40 |
Traffic management overview for internal HTTP(S) load balancers. |
|
| 2470 | 41 |
|
| 2471 | 42 |
Health check |
43 |
============ |
|
44 |
||
45 |
List health checks:: |
|
46 |
||
47 |
gcloud compute health-checks list --format=yaml |
|
48 |
||
49 |
In order for LB to function you need to define health checks. They run outside of intranet so |
|
50 |
firewall rules have to be applied to VMs for checks to succeed:: |
|
51 |
||
52 |
gcloud compute firewall-rules create fw-allow-health-check \ |
|
53 |
--network=default \ |
|
54 |
--action=allow \ |
|
55 |
--direction=ingress \ |
|
56 |
--source-ranges=130.211.0.0/22,35.191.0.0/16 \ |
|
57 |
--target-tags=allow-health-check \ |
|
58 |
--rules=tcp:80 |
|
59 |
||
60 |
https://cloud.google.com/load-balancing/docs/health-checks |
|
61 |
Creating health checks & magical subnets for FW rules. |
|
62 |
||
| 2473 | 63 |
SSL certificates |
64 |
================ |
|
65 |
||
66 |
To view status and error details run:: |
|
67 |
||
68 |
gcloud beta compute ssl-certificates describe $NAME |
|
69 |
gcloud beta compute ssl-certificates list --format=yaml |
|
70 |
||
71 |
and check codes against: |
|
72 |
||
73 |
https://cloud.google.com/load-balancing/docs/ssl-certificates/troubleshooting |
|
74 |
Troubleshooting SSL certificates. Error codes description. |
|
75 |
||
|
2474
cc7945bce35e
Using self-managed SSL certificates.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2473
diff
changeset
|
76 |
To set manages sertificate follow instructions: |
| 2473 | 77 |
|
|
2474
cc7945bce35e
Using self-managed SSL certificates.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2473
diff
changeset
|
78 |
https://cloud.google.com/load-balancing/docs/ssl-certificates/self-managed-certs |
|
cc7945bce35e
Using self-managed SSL certificates.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2473
diff
changeset
|
79 |
Using self-managed SSL certificates. |
|
cc7945bce35e
Using self-managed SSL certificates.
Oleksandr Gavenko <gavenkoa@gmail.com>
parents:
2473
diff
changeset
|
80 |