GCP Basics — Core Services for Developers

Overview

Google Cloud Platform (GCP) is known for its leadership in data analytics, AI/ML, and Kubernetes. Built on the same infrastructure that powers Google Search and YouTube, GCP offers developers powerful tools for compute, storage, databases, and big data. This guide covers the core services you need to build and deploy applications on GCP.

When to Use

• You need best-in-class data analytics and AI/ML services
• You are building containerized or serverless applications
• You want deep integration with open-source tools (Kubernetes, TensorFlow, Apache Beam)
• Your workloads benefit from Google’s global network and pricing model

Compute — GCE, GKE, and Cloud Run

Compute Engine (GCE)

Virtual machines with flexible sizing and pricing (sustained use discounts, committed use discounts).

# Create a VM instance
gcloud compute instances create my-vm \
  --zone=us-central1-a \
  --machine-type=e2-medium \
  --image-family=ubuntu-2204-lts \
  --image-project=ubuntu-os-cloud \
  --boot-disk-size=20GB

Machine Family	Use Case
E2	Cost-optimized general purpose
N2/N2D	Balanced performance and cost
C2/C2D	Compute-intensive workloads
M1/M2	Memory-intensive (ultramem)

Google Kubernetes Engine (GKE)

Managed Kubernetes with autopilot and standard modes.

# Create a GKE cluster
gcloud container clusters create my-cluster \
  --zone=us-central1-a \
  --num-nodes=3 \
  --enable-autoscaling \
  --min-nodes=1 \
  --max-nodes=10

# Deploy an application
kubectl create deployment hello-app --image=gcr.io/project/hello-app:v1
kubectl expose deployment hello-app --type=LoadBalancer --port=80

Cloud Run

Serverless containers: deploy any containerized application without managing servers.

# Deploy a container to Cloud Run
gcloud run deploy hello-service \
  --image=gcr.io/project/hello-app:v1 \
  --platform=managed \
  --region=us-central1 \
  --allow-unauthenticated

Cloud Run automatically scales to zero and handles HTTPS termination.

Storage — Cloud Storage and Persistent Disks

Cloud Storage

Unified object storage with global edge caching.

# Create a bucket
gsutil mb -l us-central1 gs://my-app-bucket

# Upload a file
gsutil cp app.zip gs://my-app-bucket/builds/

# Make public (with caution)
gsutil iam ch allUsers:objectViewer gs://my-app-bucket

Class	Use Case	Minimum Storage
Standard	Frequently accessed	None
Nearline	Monthly access	30 days
Coldline	Quarterly access	90 days
Archive	Yearly access	365 days

Persistent Disks

Block storage for Compute Engine and GKE.

# Create and attach a disk
gcloud compute disks create my-disk --size=100GB --type=pd-ssd --zone=us-central1-a
gcloud compute instances attach-disk my-vm --disk=my-disk --zone=us-central1-a

Disk Type	IOPS	Throughput	Use Case
pd-standard	500	120 MB/s	Boot disks, low I/O
pd-balanced	15,000	240 MB/s	General purpose
pd-ssd	30,000	480 MB/s	Databases, high I/O
pd-extreme	120,000	2,200 MB/s	SAP, HPC

Databases — Cloud SQL, Firestore, and BigQuery

Cloud SQL

Managed PostgreSQL, MySQL, and SQL Server with automated backups and replicas.

# Create a PostgreSQL instance
gcloud sql instances create mydb \
  --database-version=POSTGRES_15 \
  --tier=db-f1-micro \
  --region=us-central1 \
  --storage-size=10GB

gcloud sql databases create myapp --instance=mydb

Firestore

Serverless NoSQL document database with real-time sync and mobile SDKs.

import { getFirestore, doc, setDoc } from 'firebase/firestore';

const db = getFirestore();
await setDoc(doc(db, 'users', 'user-1'), { name: 'Alice', email: 'alice@example.com' });

BigQuery

Serverless data warehouse for analytics at petabyte scale.

-- Query public dataset
SELECT
  name,
  SUM(number) AS total_births
FROM `bigquery-public-data.usa_names.usa_1910_2013`
WHERE gender = 'F'
GROUP BY name
ORDER BY total_births DESC
LIMIT 10;

Networking — VPC

Global Virtual Private Cloud with automatic routing.

┌─────────────────────────────────────────────┐
│              Global VPC                       │
│  ┌─────────────┐    ┌─────────────────────┐ │
│  │  Subnet A   │    │     Subnet B        │ │
│  │  (us-east)  │    │     (europe-west)   │ │
│  │  ┌───────┐  │    │  ┌───────┐ ┌─────┐ │ │
│  │  │  VM   │  │    │  │  VM   │ │SQL  │ │ │
│  │  └───┬───┘  │    │  └───┬───┘ └──┬──┘ │ │
│  │      │      │    │      │        │    │ │
│  │  Cloud Load  │    │   Cloud NAT        │ │
│  │  Balancer    │    │   (egress only)    │ │
│  └──────────────┘    └────────────────────┘ │
└─────────────────────────────────────────────┘

Key networking features:

• Cloud Load Balancing: Global, anycast-based load balancing
• Cloud CDN: Content delivery with 140+ edge locations
• Cloud Armor: DDoS protection and WAF
• Private Service Connect: Secure access to managed services

Security — IAM and Cloud KMS

Identity and Access Management with resource-based policies.

# IAM policy for a service account
bindings:
  - members:
      - serviceAccount:my-app@project.iam.gserviceaccount.com
    role: roles/storage.objectViewer
  - members:
      - serviceAccount:my-app@project.iam.gserviceaccount.com
    role: roles/cloudsql.client

Best practices:

• Use service accounts, not user credentials
• Enable VPC Service Controls for data exfiltration prevention
• Use Cloud KMS for key management and encryption
• Enable Cloud Audit Logs for all services

Common Mistakes

• Using default VPC without segmentation — create custom networks with subnets per environment
• Over-provisioning Compute Engine — use rightsizing recommendations
• Ignoring egress costs — data transfer between regions is expensive
• Not using Cloud NAT for private instances — private instances need outbound internet for updates
• Storing secrets in environment variables — use Secret Manager instead

FAQ

Is GCP free? GCP offers a Free Tier with 300 USD credit for 90 days and always-free limits on Compute Engine, Cloud Storage, and BigQuery.

GCP vs AWS vs Azure?

• GCP: Best for data analytics, AI/ML, Kubernetes, open-source
• AWS: Broadest services, largest ecosystem
• Azure: Best for Microsoft integration, hybrid cloud

How do I deploy from GitHub? Use Cloud Build triggers connected to GitHub repositories, or GitHub Actions with google-github-actions/setup-gcloud and google-github-actions/deploy-cloudrun.