Sorry for the delay in response. Yes, these are correct. Here's the explanation to 3), rules with the highest priority(lowest number) will be evaluated first, in this case, the 3rd rule will be evaluated first as it has the priority of 500, which grants outbound access to 192.168.2.1 on port 22(SSH) then deny on 192.168.2.1 and 0.0.0.0/0 will be evaluated as they are next in line with priority 1000. so deny on every IP except 192.168.2.1 on port 22 will be executed. then inbound on 0.0.0.0/0 will be provided. final results: outbound on 192.168.2.1 port 22 inbound from 0.0.0.0/0 on port 22 rest will be denied.

@@TechTutorialswithPiyush 👍

regarding 5th point, Subnets are created at region level, not the VPC • VPC: Global resource, not tied to a single region. • Subnets: Regional resources within a VPC.

Glad you enjoyed it!

Is this the link @Piyush? kzbin.info/www/bejne/fWLEq6CCapKYh6s

I see that you already found it.

Hello Nagendran, ping me over LinkedIn, will share some pointers

@@TechTutorialswithPiyush Sure. Thank you for your quick and prompt response

Thank you! Cheers!

Thank you for the wonderful feedback. Yes, that was my mistake, it should be us-west1 and us-east1. Good catch!

Yes, correct. GCP has some advantage over AWS also, VNET in GCP is global , in AWS it is regional

Most welcome

Yes, please check the below video kzbin.info/www/bejne/fWLEq6CCapKYh6s

@@TechTutorialswithPiyush thank you so much for making simple rule. /32 - no ip can change /24 - only last ip can change. /16 - only last two digit ip can change. /8 - last three ip can change. /0 - all ip can change I got the other point is: if the subnet mask is less then it has a larger ip address located to it

In GCP, A VPC can span into multiple regions

Absolutely correct answers Ngendran, you are on fire! for 3), rules with highest priority(lowest number) will be evaluated first, in this case 3rd rules will be evaluated first as it has the priority of 500, that grants outbound access to 192.168.2.1 on port 22(SSH) then deny on 192.168.2.1 and 0.0.0.0/0 will be evaluated as they are next in line with priority 1000. so deny on every IP expect 192.168.2.1 on port 22 will be executed. then inbound on 0.0.0.0/0 will be provided. final results: outbound on 192.168.2.1 port 22 inbound from 0.0.0.0/0 on port 22 rest will be denied. I hope this I answered your question. Let me know if you still need to discuss anything. Good luck for your exam!

@@TechTutorialswithPiyush Great Answers. Many thanks for your time and quick explanation

You're most welcome, happy Diwali 😊🙏

I am not sure about dhcprelay but dhcp yes.

Firewall rule is to allow/deny certain traffic on certain ports to and from certain IP ranges. e.g if you want that you should have ssh access to your instance. You can create a firewall rule that allows port 22 access from your source IP. Firewall policy is a collection of firewall rules that allows you to update all at once. It can be applied at org level, folder level or vpc level. I have added rest of the items to my to-do list and I will definitely create a video/blog on the same. This video was part of the Associate cloud engineer certification hence, in-depth topics were not covered and only the exam topics were discussed but I will create a blog or video on the same. Thanks for reaching out!

@@TechTutorialswithPiyush thank you so much can you answer all the question here in your blog and share it

Thank you very much 🫡🙏

Here's the explanation to 3), rules with the highest priority(lowest number) will be evaluated first, in this case, the 3rd rule will be evaluated first as it has the priority of 500, which grants outbound access to 192.168.2.1 on port 22(SSH) then deny on 192.168.2.1 and 0.0.0.0/0 will be evaluated as they are next in line with priority 1000. so deny on every IP except 192.168.2.1 on port 22 will be executed. then inbound on 0.0.0.0/0 will be provided. final results: outbound on 192.168.2.1 port 22 inbound from 0.0.0.0/0 on port 22 rest will be denied.

Hello Akshahantra, A subnet in GCP is a regional resource so yes, it can span across multiple zones 🙂

@@TechTutorialswithPiyush thanks so much for your time and reply .. Keep going .. we r with u

Boot with the network? sorry I didnt get your question, can you please elaborate

You're most welcome 🙂

Thank you ❣️

Hello Mahesh, If it is a quick question, feel free to message me over Linkedin. You can also join our community call every Sunday 11 am EST on our Discord server.

You can do that but I would suggest working with Cloud shell as you will get yourself familiar with gcloud CLI .Console usually changes a lot frequently and most of the times you would not get privileged access through console when working for an organization. I would highly recommend working and practising through CLI

No, it's correct. Let me tell you why, This is one single VPC that has subnet in multiple regions. In GCP you can extend your VPC to multiple regions, this is not possible with AWS. You can further check the below diagram from GCP docs cloud.google.com/vpc/docs/vpc#network_example

Sorry buddy I don't provide paid consulting services. your issue requires complete implementation, sorry I wouldn't be able to help you out

@@TechTutorialswithPiyush Thanks Piyush for reply

Thanks for sharing the answers, yes they are correct. Here's the explanation to 3), rules with the highest priority(lowest number) will be evaluated first, in this case, the 3rd rule will be evaluated first as it has the priority of 500, which grants outbound access to 192.168.2.1 on port 22(SSH) then deny on 192.168.2.1 and 0.0.0.0/0 will be evaluated as they are next in line with priority 1000. so deny on every IP except 192.168.2.1 on port 22 will be executed. then inbound on 0.0.0.0/0 will be provided. final results: outbound on 192.168.2.1 port 22 inbound from 0.0.0.0/0 on port 22 rest will be denied.