google-cloud-networking

Static IP to access GCP Machine Learning APIs via gRPC stream over HTTP/2

阅读更多关于 Static IP to access GCP Machine Learning APIs via gRPC stream over HTTP/2

问题 We're living behind a corporate proxy/firewall, that can only consume static IP rules and not FQDNs. For our project, we need to access Google Speech To Text API: https://speech.googleapis.com . If outside of corporate network, we use gRPC stream over HTTP/2 to do that. The ideal scenario looks like: Corporate network -> static IP in GCP -> forwarded gRPC stream to speech.googleapis.com What we have tried is creating a global static external IP, but failed when configuring the Load Balancer,

Google cloud storage egress high cost, how can I reduce it?

阅读更多关于 Google cloud storage egress high cost, how can I reduce it?

问题 I have an android/ionic app running on 28 smart TVs. this app show in the TV images and videos like promotions and other informative banners, this images are stored in google cloud storage are 78 images with total size of 300mb. The app have the URL of the image and show it like a html web <img src="googlecloudimageurl"> Every 10 seconds the googlecloudimageurl changes to show the next image like a slide, every 10 seconds the image is downloaded from a Google Cloud Storage URL that is in the

Can't access Google Cloud SQL with private IP from peered VPC network

阅读更多关于 Can't access Google Cloud SQL with private IP from peered VPC network

问题 These are the steps: In "Project A" I have a "network A" with postgresql private IP in it. Can access postgresql from VM existing in same "network A" through private IP. Create a new "network B" in same "Project A" Create a "VPC network peer" between "network A" and "network B" Fully open firewall Can't reach postgresql from "network B", though can ping VM existing on "network A" Why i can't reach postgresql? Is it because SQL Private IP is in Beta mode, or i'm missing smth here? 回答1: Cloud

Significant delay when accessing internet via google cloud NAT

阅读更多关于 Significant delay when accessing internet via google cloud NAT

问题 in our setup we have VM without external IPs accessing outside world via Google Cloud NAT. We are observing strange behavior: every 10 - 15th request is significantly delayed (15 - 135 seconds) ~$ for i in {1..50}; do echo $i; time curl -s 'https://stackoverflow.com/' > /dev/null; done . . . 15 real 2m10.830s user 0m0.049s sys 0m0.029s I can see in the stackdriver logs that concerned connections were DROPPED: { . . . jsonPayload: { allocation_status: "DROPPED" } timestamp: "2019-09-20T11:41

Significant delay when accessing internet via google cloud NAT

阅读更多关于 Significant delay when accessing internet via google cloud NAT

Accessing Cloud SQL from another GCP project

阅读更多关于 Accessing Cloud SQL from another GCP project

问题 I want to connect to Cloud SQL from a different GCP project. Cloud SQL is location in ProjectSQL and a VPC network is there in ProjectSQL project with name sql_vpc There is another project ProjectDataflow and this has a vpc dataflow_vpc. I want to connect to cloudSQL from ProjectSQL with the VM launched in ProjectDataflow project Things I have tried with success and failure. Private ACCESS: VPC Peering: Enable Private IP access in Cloud with the vpc sql_vpc Creating VPC peering between

Is there a way to create firewall rules for my Google Cloud Functions HTTP endpoints?

阅读更多关于 Is there a way to create firewall rules for my Google Cloud Functions HTTP endpoints?

问题 Just wanted to check if this is in the roadmap of already available and I have just missed these. While building my Functions for an important project, I want to apply some firewall rules to limit network access for some of my Google Cloud Functions (HTTP endpoint triggers) because of reasons that are manifold (security, avoid high price if sudden charge caused by spammy requests, etc.) Is this available or in the pipeline? If not, how would you limit access to a particular function to only

My google app instances does not seem to be on correct region

阅读更多关于 My google app instances does not seem to be on correct region

问题 I have just created one google app engine application and one 2nd Generation MySQL instance in eu-west2 region. In GCP Console they both seems to be in eu-west2 region. However when I try to gelocate my ip's they seem to be in somewhere in US. What should I do to use GCP in eu-west2 region? my GCP instances: their locations: 回答1: Google has an extensive world wide network. What you are seeing is us routing you to Google's closest Point of Presence (POP), which from that point on you're on a

How to give access to single Compute Instance on GCP?

阅读更多关于 How to give access to single Compute Instance on GCP?

Been trying to figure this out but no luck thus far. Suprisingly difficult to achieve when compared to AWS. I have a Google Cloud Platform (GCP) project with multiple Compute Instances and other services running. I need to give root access to a single compute instance but not any other service to an external development team. In the "Compute Engine" view when I select the instance and add the user as Compute Admin (Full control of all Compute Engine resources) but he still cannot ssh into the instance. Try #1: Got error: "Require compute.instance.get permission." So I went and gave that user a

Is there a way to create firewall rules for my Google Cloud Functions HTTP endpoints?

阅读更多关于 Is there a way to create firewall rules for my Google Cloud Functions HTTP endpoints?

Just wanted to check if this is in the roadmap of already available and I have just missed these. While building my Functions for an important project, I want to apply some firewall rules to limit network access for some of my Google Cloud Functions (HTTP endpoint triggers) because of reasons that are manifold (security, avoid high price if sudden charge caused by spammy requests, etc.) Is this available or in the pipeline? If not, how would you limit access to a particular function to only allow a few Google Compute Engines, other GCF, and other Google Cloud Services (Firestore, Storage,