GCPcloud~30 mins

Private Google Access in GCP - Mini Project: Build & Apply

Choose your learning style9 modes available

Learn Why Deep Visual Try Challenge Project Recall Time

Enable Private Google Access on a GCP Subnet

📖 Scenario: You are setting up a Virtual Private Cloud (VPC) network in Google Cloud Platform (GCP) for a company. The company wants to ensure that virtual machines (VMs) in a specific subnet can access Google APIs and services without using public IP addresses. This is important for security and compliance.

🎯 Goal: Create a subnet in a VPC network and enable Private Google Access on that subnet so that VMs without external IPs can reach Google services privately.

📋 What You'll Learn

Create a VPC network named my-vpc

Create a subnet named my-subnet in region us-central1 with IP range 10.0.0.0/24

Enable Private Google Access on my-subnet

💡 Why This Matters

🌍 Real World

Many organizations require their cloud resources to access Google services securely without exposing public IPs. Private Google Access allows this by routing traffic internally within Google's network.

💼 Career

Cloud engineers and network administrators often configure Private Google Access to meet security policies and compliance requirements in enterprise environments.

Progress0 / 4 steps

Create a VPC network named my-vpc

Write a gcloud command to create a custom-mode VPC network called my-vpc.

GCP

# Use gcloud to create a custom VPC network named my-vpc
# Your code here

Need a hint?

Use gcloud compute networks create with --subnet-mode=custom to create the VPC.

Create a subnet named my-subnet in region us-central1 with IP range 10.0.0.0/24

Write a gcloud command to create a subnet called my-subnet in the us-central1 region within the my-vpc network, using the IP range 10.0.0.0/24.

GCP

gcloud compute networks create my-vpc --subnet-mode=custom
# Create subnet my-subnet in us-central1 with IP range 10.0.0.0/24
# Your code here

Need a hint?

Use gcloud compute networks subnets create with the correct network, region, and IP range.

Enable Private Google Access on my-subnet

Write a gcloud command to update the subnet my-subnet in us-central1 to enable Private Google Access.

GCP

gcloud compute networks create my-vpc --subnet-mode=custom
gcloud compute networks subnets create my-subnet --network=my-vpc --region=us-central1 --range=10.0.0.0/24
# Enable Private Google Access on my-subnet
# Your code here

Need a hint?

Use gcloud compute networks subnets update with --enable-private-ip-google-access to enable Private Google Access.

Verify Private Google Access is enabled on my-subnet

Write a gcloud command to describe the subnet my-subnet in us-central1 and confirm that privateIpGoogleAccess is set to true.

GCP

gcloud compute networks create my-vpc --subnet-mode=custom
gcloud compute networks subnets create my-subnet --network=my-vpc --region=us-central1 --range=10.0.0.0/24
gcloud compute networks subnets update my-subnet --region=us-central1 --enable-private-ip-google-access
# Describe my-subnet to verify Private Google Access
# Your code here

Need a hint?

Use gcloud compute networks subnets describe to check the subnet details.