[google-appengine] Re: on-premise to GCloud compute engine VPN using on-premise range IP

Thu, 02 Apr 2020 05:16:51 -0700 

Hi,

  Finally we have solved in that way.

    - Created an VPC net and subnet using range 172.30.X.X. *OUR-NET*
    - Create a Compute engine (CE) using 
*OUR-NET as primary interface eth0/nic0 and NOT External IP address.*
    - Created an Classic VPN IKEv2 with Policy-based routing using the VPC 
net and subnet. 
https://cloud.google.com/vpn/docs/how-to/creating-static-vpns. At this 
point we are able to connect from our on-premise hosts to CE
    - Because our CE is in OUR-NET and we haven't an external IP address we 
have needed to enable Identity-Aware Proxy IAP for access through "gcloud 
compute ssh"
https://cloud.google.com/iap/docs/using-tcp-forwarding

Regards,


El miércoles, 4 de marzo de 2020, 14:40:22 (UTC+1), Gabriel Aberasturi 
escribió:
>
> Hello,
>
>   I have a compute engine with a service on it. This compute engine has an 
> internal IP (10.208.0.X) and external IP and I can reach the service 
> through external IP.
>   
>   Now I want to create a VPN from on-premise to GCloud but I want that 
> when I call the service from on-premise use and IP from on-premise range 
> (172.30.XX) and be route to the compute engine.
>
>   I have configure the VPN between on-premise and gcloud using the next 
> link:
>
>   https://cloud.google.com/vpn/docs/how-to/creating-static-vpns
>
>   - Created an VPC net and subnet using range 172.30.X.X
>   - Created an Classic VPN IKEv2 with Policy-based routing using the VPC 
> net and subnet.
>   - Attached network tag to Compute engine and create a firewall rule 
> allowing incoming trafic from on-premise.
>   
>   The VPN gateway and tunnel is up and running but I'm not able to reach 
> compute engine neither using on-premise range (172.30.x.x) nor internal ip 
> (10.208.0.X).
>
>   Any help would be appreciated.
>   
> Regards
>

-- 
You received this message because you are subscribed to the Google Groups 
"Google App Engine" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to google-appengine+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/google-appengine/6a20254a-9639-4d05-b5c4-75639a24b66f%40googlegroups.com.

Reply via email to