VPC

VPC network

How to create firewalls and use them from selective access to machines?

    1  gcloud compute firewall-rules list
    2  gcloud compute --project=qwiklabs-gcp-04-85e6969e7efe firewall-rules create allow-ingress-from-iap --direction=INGRESS --priority=1000 --network=acme-vpc --action=ALLOW --rules=tcp:22,tcp:3389 --source-ranges=35.235.240.0/20
    3  gcloud compute --project=qwiklabs-gcp-04-85e6969e7efe firewall-rules create allow-egress-from-juice-shop --direction=EGRESS --priority=1000 --network=acme-vpc --action=ALLOW --rules=tcp:80 --destination-ranges=0.0.0.0/0 --target-tags=customers-use
    4  gcloud compute --project=qwiklabs-gcp-04-85e6969e7efe firewall-rules create allow-juice-shop-for-customers --direction=INGRESS --priority=1000 --network=default --action=ALLOW --rules=tcp:80 --source-ranges=0.0.0.0/0 --target-tags=customers-use
    5  gcloud compute --project=qwiklabs-gcp-04-85e6969e7efe firewall-rules create allow-juice-shop-for-customers --direction=INGRESS --priority=1000 --network=acme-vpc --action=ALLOW --rules=tcp:80 --source-ranges=0.0.0.0/0 --target-tags=customers-use
    6  gcloud compute --project=qwiklabs-gcp-04-85e6969e7efe firewall-rules create bastion-to-juice-shop-ssh --description=bastion-to-juice-shop-ssh --direction=INGRESS --priority=1000 --network=acme-vpc --action=ALLOW --rules=tcp:22 --source-ranges=192.168.10.0/24 --target-tags=ssh-juice-shop-from-bastion
    7  history

IAP

.https://cloud.google.com/python/docs/getting-started/authenticate-users#app-managed_authentication

.https://google.qwiklabs.com/focuses/5562?parent=catalog

PreviousCloud Storage NextCost optimization

Last updated 4 years ago

Was this helpful?