Back

Configuring Networks via gcloud

    1. In Cloud Shell, use the following gcloud command to create a custom mode network called labnet:
      gcloud compute networks create labnet --subnet-mode=custom

      With this command you’re doing the following:

      1. gcloud invokes the Cloud SDK gcloud command line tool
      2. compute is a one of the groups available in gcloud, part of a nested hierarchy of command groups
      3. networks is a subgroup of compute with it’s own specialized commands
      4. create is the action to be executed on this group
      5. labnet is the name of the network you’re creating
      6. --subnet-mode=custom you’re passing the subnet mode flag and the type of subnet you’re creating, “custom”.
    2. Now create sub-network labnet-sub:
      gcloud compute networks subnets create labnet-sub \
--network labnet \
--region us-central1 \
--range 10.0.0.0/28
    3. Viewing & Describing networks
      gcloud compute networks list
gcloud compute networks describe NETWORK_NAME
    4. List subnets
      gcloud compute networks subnets list
    5. Create the labnet-allow-internal firewall rule:
      gcloud compute firewall-rules create labnet-allow-internal \
--network=labnet \
--action=ALLOW \
--rules=icmp,tcp:22 \
--source-ranges=0.0.0.0/0
      1. firewall-rules is a subcatagory of compute
      2. create is the action you are taking
      3. labnet-allow-internal is the name of the firewall rule
      4. –network=labnet puts the rule in the labnet network
      5. –action=ALLOW must be used with the –rules flag, and is either “ALLOW” or “DENY”
      6. –rules=icmp,tcp:22 specifies the icmp and tcp protocols and the ports that the rule applies to
      7. –source-ranges=0.0.0.0/0 specifies the ranges of source IP addresses in CIDR format.
    6. Run the following command to create the privatenet network:
      gcloud compute networks create privatenet --subnet-mode=custom
    7. Create the private-sub subnet:
      gcloud compute networks subnets create private-sub \
--network=privatenet \
--region=us-central1 \
--range 10.1.0.0/28
    8. Run the following command to create the privatenet-deny firewall rule:
      gcloud compute firewall-rules create privatenet-deny \
--network=privatenet \
--action=DENY \
--rules=icmp,tcp:22 \
--source-ranges=0.0.0.0/0
    9. Run the following command to create the pnet-vm instance in the private-sub subnet:
      gcloud compute instances create pnet-vm \
--zone=us-central1-c \
--machine-type=n1-standard-1 \
--subnet=private-sub
    10. Run the following command to create the lnet-vm instance in the labnet-sub subnet:
      gcloud compute instances create lnet-vm \
--zone=us-central1-c \
--machine-type=n1-standard-1 \
--subnet=labnet-sub
    11. Ping the external IP addresses Ping the external IP addresses of the VM instances to determine if you can reach the instances from the public internet.
      ping -c 3 <Enter lnet-vm's external IP here>

    Tag:

    admin

    You may also like

    How to install git credential manager core on Ubuntu 22.04 / 20.04
    September 28, 2024

    Download the GCM wget “https://github.com/git-ecosystem/git-credential-manager/releases/download/v2.5.0/gcm-linux_amd64.2.5.0.deb” -O /tmp/gcmcore.deb Execute the installable file sudo dpkg -i /tmp/gcmcore.deb Configure GCM git-credential-manager configure Configure the GCM store git config –global credential.credentialStore plaintext or export GCM_CREDENTIAL_STORE=plaintext

    Configure Azure P2S VPN Gateway with Microsoft Entra Authentication
    June 25, 2024

    Prerequisites Azure Subscription: Ensure you have an active Azure subscription. Azure AD Directory: You must have an Azure AD directory. User Permissions: Ensure you have permissions to create and manage resources in the Azure portal. Step-by-Step Guide Step 1: Create and Configure the Virtual Network Gateway Create a Virtual Network: …

    Hosting Static Website In S3 Bucket
    August 24, 2023

    Courses

    About

    © 2024 WebMagic Informatica. All rights reserved.

    Facebook Youtube Whatsapp Github Linkedin Instagram