Cloud Logging and Kubernetes Management Quiz

Questions and Answers

What should you do to minimize costs while using Cloud Logging with BigQuery?

Create a logs export with Cloud Pub/Sub and configure a Cloud Function to filter logs.

Filter Compute Engine logs and create a BigQuery export as a sink. (correct)

Assign the BigQuery Data Editor role to service accounts and set the logs destination.

Create a Cloud Function to execute a query and use Cloud Scheduler to run it daily.

Which option utilizes the fewest services when creating a DaemonSet in a Kubernetes cluster with Deployment Manager?

Create a Compute Engine instance with a startup script to use kubectl for the DaemonSet.

Add the cluster's API as a new Type Provider and create the DaemonSet.

Add a metadata entry in the cluster's definition with the DaemonSet manifest. (correct)

Use the Runtime Configurator to create a Config resource with the DaemonSet definition.

In a cloud logging context, what role should be assigned to service accounts to permit them to write logs to BigQuery?

BigQuery Data Owner

Cloud Logging Admin

BigQuery Viewer

BigQuery Data Editor (correct)

Which strategy is NOT a recommended method for log retention in Google Cloud Logging?

Setting a global retention policy for all logs.

What service can be used to monitor and filter specific logs for a Kubernetes cluster?

Cloud Pub/Sub

When configuring a service to run a DaemonSet, which Kubernetes object is essential?

DaemonSet

What is the primary purpose of using Cloud Scheduler in a logging architecture?

To automate the triggering of log-related functions.

Which service type should you create to expose an application on a public IP address using HTTPS in Google Kubernetes Engine?

Create a Service of type NodePort with Ingress to expose via Cloud Load Balancer.

What is the first step to estimate costs for a Kubernetes cluster using GCP's pricing calculator?

Enter the number of nodes, average hours, and average days.

Which option provides an efficient way to streamline Kubernetes resource deployment via Deployment Manager?

Combining resource metadata into a single deployment configuration.

How can you improve an application's exposure to public traffic in a GKE cluster with autoscaling enabled?

Create a Service of type LoadBalancer with HTTPS configuration.

What is the primary benefit of using persistent disk storage in GCP?

It allows for high IOPs and data persistence across node failures.

Which approach is incorrect for configuring public access to an application in GKE?

Configure DNS to point directly to a ClusterIP service.

When should you use the local SSD option in GCP?

When you require high throughput and low latency for temporary storage.

What is a mistake when estimating costs for high IOPs workloads in GCP Kubernetes?

Neglecting to include GPU costs for performance scaling.

Which configuration is optimal for maintaining high availability and accessibility of your application on GKE?

Deploy multiple replicas with a Service of type LoadBalancer.

What is the most appropriate way to grant an auditor access to read project items without modifying them?

Select the built-in IAM project Viewer role and add the user's account to this role.

How can two groups of Compute Engine instances from different GCP projects communicate?

Share the VPC from one project with the Compute Engine instances in the other project.

What should you do to provide your Machine Learning team access to Nvidia Tesla P100 GPUs in a GKE cluster?

Deploy a custom GKE cluster with specialized nodes for GPU workloads.

Which of the following approaches best represents a log retention strategy in a GCP environment?

Configure logs to be deleted after one year to save space.

When managing billing accounts in GCP, which practice should be avoided?

Assign billing account permissions to all users in the organization.

Which service type in GKE is most suitable for running long-lived applications?

Deployments

In the context of IAM roles, which option is most aligned with providing minimal necessary permissions?

Create a custom role with only the necessary permissions for the task.

What is essential for ensuring proper access and management of GPUs in GKE clusters for specific workloads?

Use node pools with GPUs and configure workload permissions accordingly.