Professional Cloud Network Engineer (PCNE)
Build real cloud skills with guided labs on AWS and Google Cloud. Practice in live environments with instant access to real cloud resources. No cloud account required.
3 labs available
This lab focuses on designing a secure Google Kubernetes Engine (GKE) networking architecture. Learners will configure VPC-native clusters, implement secure private endpoints, and manage GKE IP plans for pods and services. Advanced security controls are applied using Google Cloud's IAM and Firewall rules, ensuring a robust environment ready for public workloads.
In this advanced lab, you will design and implement a multi-region high availability network architecture using Google Cloud's Virtual Private Cloud (VPC), Load Balancing, and Private Service Connect. You will start by creating custom VPCs with subnetting in us-central1 and us-east1 to enable regional high availability. You will configure Cloud Load Balancing to ensure application availability across both regions, utilizing backend services and health checks to maintain high SLA. Additionally, you will set up DNS peering and Cloud DNS for hybrid resolution, alongside Private Service Connect for service access within private networks, enhancing security and performance.
In this lab, you will design a scalable Virtual Private Cloud (VPC) network on Google Cloud to support a growing enterprise application. You will create VPCs in custom mode, define subnets with IPv6 addressing, and configure appropriate routing rules. This exercise involves advanced architectural decisions to foster scalability, performance, and security, aimed at providing a resilient network foundation for a multi-region application deployment.
2 labs available
In this lab, you will set up a VPC network with complex routing strategies and advanced security measures appropriate for an enterprise-scale environment within GCP. You will learn to configure subnets, enable Private Google Access, implement Cloud NAT and hierarchical firewall policies, and apply routing strategies using tags. The lab will detail the integration of dynamic and policy-based routing, alongside implementing a Cloud Next Generation Firewall for enhanced security controls. You will also explore network optimization techniques suited to a professional-level network engineer’s responsibilities.
In this lab, you'll explore the design and implementation of a Virtual Private Cloud (VPC) on Google Cloud Platform. You'll create and configure VPC networks and subnets, implement advanced routing and access controls, and interconnect various services to build a comprehensive network architecture using Google's best practices. By completing this lab, you will enhance your skills in managing complex VPC networks and preparing them for enterprise-grade deployment.
1 lab available
In this lab, you will create a scalable and highly available load balancing solution leveraging Google Cloud Load Balancing and Google Kubernetes Engine (GKE). Participants will configure HTTPS load balancing with Cloud CDN to optimize content delivery, ensuring minimal latency and high availability across multiple regions. You will also configure security policies with Cloud Armor to protect your application against common vulnerabilities and set up DNS with Cloud DNS for seamless domain management. These configurations are designed to simulate a production-grade environment, providing insights into performance optimization and security enhancement techniques that are crucial for enterprise applications.
1 lab available
This lab will guide students through the process of configuring a high-availability VPN using GCP's Cloud Interconnect and HA VPN features. Students will learn how to provision VLAN attachments, configure Cloud Routers, and enforce robust security policies to ensure reliable network connectivity between on-premises networks and Google Cloud VPCs. The lab includes steps to simulate failover scenarios to validate the high availability of the VPN setup.
1 lab available
This lab focuses on the techniques needed to effectively monitor and troubleshoot Google Cloud networks using a range of tools and services. Candidates will set up a robust network infrastructure and implement various monitoring and troubleshooting skills. They will gain hands-on experience with Cloud Logging, Network Intelligence Center, and other GCP networking services.
1 lab available
In this lab, you will build a secure network architecture using Google Cloud Armor and Next Generation Firewall (NGFW). You'll create and configure policies to protect your applications against web threats, such as SQL injection and cross-site scripting (XSS). This involves setting up WAF rules, enabling adaptive protections, and applying firewall policies to control access and egress at the VPC level. You'll also implement rate limiting and bot control strategies. The lab is structured to simulate a real-world scenario where you're tasked with enhancing the existing network security of a company, ensuring robust application protection and network traffic control.
