Term 91
Compute Engine
Compute Engine is Google Cloud's Infrastructure-as-a-Service (IaaS) offering that lets you create and run virtual machines on Google's infrastructure.
Acronym study
Terms 91–120 of 321 Google ACE acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 91
Compute Engine is Google Cloud's Infrastructure-as-a-Service (IaaS) offering that lets you create and run virtual machines on Google's infrastructure.
Term 92
A connected route is a network path that a router knows about automatically because it has a network interface directly connected to that network.
Term 93
A container is a lightweight, standalone software package that includes everything needed to run an application, such as code, runtime, system tools, and libraries.
Term 94
A container escape is a security exploit where an attacker breaks out of the isolated environment of a container to gain unauthorized access to the host operating system or other containers.
Term 95
Container image scan is the automated process of inspecting a container image for security vulnerabilities, misconfigurations, and exposed secrets before it is deployed.
Term 96
A container instance is a running software package created from a container image that includes its own code, runtime, and dependencies, isolated from the host system.
Term 97
A container registry is a centralized storage and distribution system for container images, enabling developers to push, pull, and manage versions of application snapshots across environments.
Term 98
Container scanning is the automated process of inspecting container images for known security vulnerabilities, misconfigurations, and compliance issues before they are deployed.
Term 99
Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.
Term 100
Cross-Region Replication is the automated copying of data from a storage bucket in one geographic region to a bucket in a different geographic region for disaster recovery, compliance, or lower latency access.
Term 101
A custom role is a user-defined set of permissions in Google Cloud that you can tailor to fit specific job functions beyond the predefined roles.
Term 102
A Data VLAN is a virtual local area network configured on a switch to carry user-generated traffic, separating it from management, voice, or other types of network traffic.
Term 103
A default gateway is a network device, typically a router, that acts as the exit point for traffic from a local network to other networks, including the internet.
Term 104
A default route is a catch-all routing entry that tells a network device where to send packets when no specific route matches the destination address.
Term 105
The Default VLAN is VLAN 1 on most Cisco switches and it is the VLAN to which all switch ports belong by default until they are assigned to a different VLAN.
Term 106
Microsoft Defender for Cloud is a cloud security posture management (CSPM) and cloud workload protection platform (CWPP) that provides unified security management and threat protection across hybrid and multi-cloud environments.
Term 107
Defender for Cloud Apps is a Microsoft cloud access security broker (CASB) that helps you discover, protect, and govern your cloud applications and data across multiple cloud environments.
Term 108
Deployment Manager is a Google Cloud service that lets you define and manage your cloud resources using declarative templates, so you can create, update, and delete infrastructure as a single unit.
Term 109
A router elected in an OSPF multi-access network to manage link-state updates and reduce routing protocol traffic.
Term 110
Dynamic Host Configuration Protocol (DHCP) automatically assigns IP addresses and network settings to devices on a network, so they can communicate without manual configuration.
Term 111
A DHCP pool is a reserved set of IP addresses that a DHCP server can assign to devices on a network automatically when they request a connection.
Term 112
A network device or feature that forwards DHCP broadcast messages between clients and servers on different subnets so that IP address assignment works across multiple network segments without a separate DHCP server on each one.
Term 113
A DHCP server is a network device or service that automatically assigns IP addresses and other network configuration parameters to devices on a network, eliminating the need for manual configuration.
Term 114
DHCP snooping is a network security feature that filters untrusted DHCP messages to prevent rogue DHCP servers from giving out false IP addresses.
Term 115
DNS is the system that translates human-friendly domain names like example.com into machine-readable IP addresses so computers can find each other on a network.
Term 116
A DNS log is a record of all Domain Name System queries and responses that pass through a server, providing a trail of which domains were requested, by whom, and when.
Term 117
DNS poisoning is a cyberattack that corrupts a DNS resolver's cache with false information, redirecting users to malicious websites without their knowledge.
Term 118
A DNS record is a set of instructions stored on a DNS server that tells clients how to interact with a domain, most commonly by mapping a human-readable domain name to an IP address.
Term 119
A DNS zone is a distinct part of the global Domain Name System (DNS) namespace that is delegated to a specific administrator or organization for management, containing resource records for a domain.
Term 120
Dynamic ARP Inspection is a security feature that validates ARP packets on a network to prevent man-in-the-middle attacks by ensuring that only legitimate ARP messages are forwarded.