Google Cloud Platform – Cloud VPN

How to Use the Date Command in Ubuntu

Cloud VPN makes it possible for you to connect your on-premises network to your Google network using an IPSEC VPN tunnel. This connectivity is recommended for low-volume data and allows for encrypted traffic between your networks travels over the public internet. The encryption protects your data while keeping costs low as your data travels over the public internet. A cloud VPN is illustrated here:

In this illustration, you will notice that on the left side you have your VPC network with a cloud VPN gateway. On the right side, you have your on-premises network that has a VPN gateway, which can either be a dedicated physical or a virtual gateway. The cloud VPN gateway makes it easy for you to connect these two networks securely over the public internet using a VPN tunnel.

Cloud VPN supports site-to-site VPN and one cloud VPN gateway can be connected to multiple on-premises networks. This means multiple on-premises networks can connect securely to a single VPC network and can have access to instances in that network. Cloud VPN uses a cloud router to support both static and dynamic routes for managing traffic between your sites. Cloud VPN is highly reliable and Google offers an SLA of 99.9% service reliability.

Ideally, an on-premises environment will have a dedicated physical or a virtual IPSEC VPN gateway, which can be configured to connect to a cloud VPN gateway endpoint. Cloud VPN only supports gateway-to-gateway scenarios and does not support client-to-gateway scenarios that are typically done using an SSL VPN client software. Cloud VPN also does not support other VPN technologies, only IPSEC is supported for now.

An important point to remember is that the on-premises CIDR IP range must not conflict with the CIDR range of the VPC network.

Comments are closed.