Architecting Hybrid Cloud Infrastructure with Anthos

(4 days) 


This four-day, instructor-led course prepares students to modernize, manage, and observe their containerized applications using Kubernetes, in Google Cloud, AWS, Azure, and on-premises. Through presentations and hands-on labs, participants explore Google Kubernetes Engine (GKE), Connect Agent, Anthos Service Mesh, and Anthos Config Management features. Participants learn how to work with containerized applications even when split between multiple clusters, hosted by multiple cloud providers or on-premises. This course is a continuation of Architecting with GKE and assumes direct experience with the technologies covered in that course.

Course Objectives

  • Explain each layer of the Anthos technology stack and the problems it is designed to address.
  • Create, connect and manage Anthos clusters from multiple deployment environments.
  • Load-balance clusters running in Google Cloud.
  • Describe automating policy and security at scale with Config Management.
  • Create multi-cluster networking architectures with Anthos Service Mesh.
  • Deploy and run applications on an Anthos on-premises solution
  • Monitor and troubleshoot applications running on an Anthos on-premises solution.
  • Install workloads on Cloud Run and Cloud Run for Anthos.
  • Configure and review logging, metrics, and monitoring for serverless computing solutions on Anthos.
  • Install and use Migrate for Anthos to migrate workloads.


  • Technical employees using Google Cloud, including customer companies, partners, and system integrators: deployment engineers, cloud architects, cloud administrators, system engineers, and SysOps/DevOps engineers.
  • Individuals using Google Cloud to create, integrate, or modernize solutions using secure, scalable microservices architectures in hybrid environments.


To get the most out of this course, participants should have:

  • Completed Google Cloud Platform Fundamentals: Core Infrastructure or have equivalent experience
    Completed Architecting with GKE or have equivalent experience

Google Cloud Platform Training Course Outline

Module 1: Introducing Anthos

  • Recognize the challenges of designing and building multi-environment solutions.
  • Identify the 6 layers of the Anthos technology stack in use.
  • Understand pricing.

Module 2: Anthos Environments

  • Discover hybrid and multi-cloud locations where Anthos can manage containerized applications.
  • Create Anthos clusters on Google Cloud and other public cloud providers.
  • Securely access Anthos clusters.

Module 3: Multi-cluster Concepts on Anthos

  • Create and use fleets
  • Understand fleet networking
  • Create and use multi-cluster services
  • Create and use multi-cluster gateways

Module 4: Managing Configuration with Anthos

  • Understand the challenges of scaling multi-cluster, multi-tenant configurations.
  • Centralize configuration management.
  • Adopt a GitOps model to minimize configuration drift.
  • Control and audit actions that different roles in your organization are allowed to perform in multi-cluster environments.
  • Extend GitOps approach to centralized configuration management.

Module 5: Introducing Anthos Service Mesh

  • Understand the benefits of Anthos Service Mesh, including running distributed services across clusters and enhancing service observability, traffic management, and security.
  • Install Anthos Service Mesh on different Anthos clusters and choose capabilities depending on the level of management and automation you want.
  • Collect workload telemetry including metrics, traces, and logs, and learn to visualize your services on the Anthos Service Mesh dashboards.
  • Understand Anthos Service Mesh and the capabilities, limitations, and costs of running it on different Anthos clusters.

Module 6: Anthos Service Mesh Routing

  • Understand how Anthos Service Mesh learns the network from Kubernetes and builds on top to provide advanced routing capabilities.
  • Deploy mesh API resources such as the VirtualService, DestinationRule, Gateway, Service Entry, and the Sidecar to configure the mesh.
  • Harden the mesh network by introducing new functionality such as request retries, request timeouts, and circuit breakers.
  • Test the mesh network by creating failures and delays on specific services in order to improve overall resilience.

Module 7: Securing Network Traffic with Anthos Service Mesh

  • Encrypt traffic between microservices to prevent anyone in the network from gaining access to private information.
  • Authorize services and requests, ensuring that services only access the information that is allowed access from other services.
  • Authenticate services and requests to verify trust among services in the mesh and among end users.
  • Limit service access in the network so that granular controls over the communication can be established.

Module 8: Multi-cluster Networking with Anthos Service Mesh

  • Understand how to do multi-cluster networking, both north-south and east-west routing, with different network configurations.
  • Learn how to configure east-west networking on different Anthos clusters running on multi-cloud and hybrid locations with Anthos Service Mesh.
  • Install Anthos Service Mesh on different Anthos GKE clusters, and choose the right network configuration depending on where you want to run your cluster.
  • Combine Anthos Service Mesh with multi-cluster Gateways and multi-cluster Services (MCS) to seamlessly run distributed services.

Module 9: Introduction to Anthos Clusters on Bare Metal

  • Understand on-premises use cases and deployment options
  • Understand support options
  • Understand the costs associated with deploying and using bare metal deployments

Module 10: Planning and Building the Admin Cluster

  • Understand the different configurations that are possible with Anthos clusters on bare metal.
  • Describe the most common settings.
  • Learn the compute, memory, networking, and storage requirements to deploy Anthos clusters on bare metal.
  • Build and deploy the control plane for your Anthos clusters on bare metal.

Module 11: Adding and Configuring User Clusters

  • Build and create Anthos user clusters on bare metal.
  • Deploy applications on your user clusters and expose them outside of the cluster.
  • Authenticate to Anthos clusters on bare metal by using Google Cloud or third-party providers.
  • Describe the different ways of configuring storage and launching stateful workloads in Anthos clusters on bare metal.

Module 12: Operating and Managing Clusters

  • Configure and use the Google Cloud Operations suite to view logs, errors, metrics, and alerts.
  • Check cluster operations and cluster state.
  • Perform cluster repairs.
  • Understand how to update the cluster.
  • Secure the cluster.

Module 13: Application Migration with Anthos

  • Understand benefits and challenges of containerizing applications.
  • Determine which workloads are a good or bad fit for migrations.
  • Use automated tools to assess a workload’s containerization fitness.
  • Plan a workload migration.

Module 14: Modern CI/CD for Anthos

  • Recall Application Deployment goals when working with microservice-based architectures.
  • Identify the model and benefits of Cloud Marketplace.
  • Explain manual (non-Marketplace) deployment patterns with Anthos Clusters.
  • Describe an automated CI/CD architecture using Cloud Build.

Module 15: Serverless Computing Solutions on Anthos

  • Identify 3 workload challenges addressed by serverless computing solutions.
  • List the Anthos serverless computing solutions components.
  • Install Cloud Run for Anthos.
  • Deploy, update, and adjust serverless workloads on Anthos.
  • Use Eventarc to deliver events.
  • List 3 best practices when running Serverless Computing Solutions on Anthos.