This web page requires JavaScript to be enabled.

JavaScript is an object-oriented computer programming language commonly used to create interactive effects within web browsers.

How to enable JavaScript?

GCP VPC – Virtual private cloud

Blog November 17, 2021 0
Home  »  Blog   »   GCP VPC – Virtual private cloud

  • Create a VPC Network
  • Creating firewall-rules
  • Configuring network tags

Create a VPC Network

Given that:

  • tdc-shared-services: The Data Center shared service project
  • tdc-shared-vpc: The Data Center shared Virtual Private Cloud
  • --region: Iowa, us-central1
  • tdc-shared-vpc-subnet: The Data Center shared Virtual Private Cloud Subnet
  • MTU: Maximum transmission unit
gcloud compute networks create tdc-shared-vpc --project=tdc-shared-services --description=The\ tdc-shared-vpc\ to\ share\ acrossing\ all\ the\ project\ in\ us-central --subnet-mode=custom --mtu=1500 --bgp-routing-mode=regional

Create subnet:

gcloud compute networks subnets create NAME --project=tdc-shared-services --range=IP_RANGE --network=tdc-shared-vpc --region=REGION

Example:

gcloud compute networks subnets create tdc-shared-vpc-subnet --project=tdc-shared-services --description=The\ tdc-shared-vpc-subnet\ on\ us-central\ -\ Iowa\ \(IA\),\ default\ IP\ range\ 10.128.0.0/20 --range=10.128.0.0/20 --network=tdc-shared-vpc --region=us-central1 --enable-private-ip-google-access

Creating firewall-rules

To create a rule that allowing the 21 port and public to the internet:

  • ftp-rule-allow-tcp-21 : The name of the rule
  • 0.0.0.0/0 : Source IP range
  • ftp-allow-tcp-21 : the network tags to be added to resources
  • tcp:21 : TCP/UDP following by port number
 gcloud compute firewall-rules create ftp-rule-allow-tcp-21 --source-ranges 0.0.0.0/0
--target-tags nam-le-allow-tcp-21 --allow tcp:21

// Add this tag to the instance usage
gcloud compute instances add-tags catdcwebt1 --tags ftp-allow-tcp-21

Configuring network tags

Tags enable you to make firewall rules and routes applicable to specific VM instances.

Adding tags when creating a VM:

gcloud compute instances create VM_NAME --tags TAGS

Adding tags to existing VM:

gcloud compute instances add-tags VM_NAME --tags TAGS

Removing tags from existing VM:

gcloud compute instances remove-tags VM_NAME --tags TAGS

Example:

gcloud compute instances add-tags catdcwebt1 --tags ftp-allow-tcp-21

Create firewall rule

gcloud compute --project=tdc-test-311308 firewall-rules create default-allow-http --direction=INGRESS --priority=1000 --network=default --action=ALLOW --rules=tcp:80 --source-ranges=0.0.0.0/0 --target-tags=http-server

gcloud compute --project=tdc-test-311308 firewall-rules create default-allow-https --direction=INGRESS --priority=1000 --network=default --action=ALLOW --rules=tcp:443 --source-ranges=0.0.0.0/0 --target-tags=https-server

We will have an example to peer two VPC later.

2021/11/17 at 9:13 pm

Views: 6

Last modified on October 10th, 2024 at 12:35 pm

Nam Le
lequocnam

Related post

Cannot Import the *.bak to GCP Cloud SQL not a supported compatibility level
 21 Aug 2021
XAMPP Error: InnoDB/MySQL shutdown unexpectedly won’t start again
 18 Dec 2021
TCP forwarding with Identity-Aware Proxy – P2
 13 Jul 2021

0 responds

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.