Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Is it possible to use Google App Engine with Google Cloud VPN?

Tags:

google-app-engine

google-cloud-platform

vpn

The documentation from Google is not really clear about it. Here ( https://cloud.google.com/compute/docs/vpn/overview ) it says

Google Cloud VPN securely connects your existing network to your Google Cloud Platform (GCP) network through an IPsec VPN connection

Considering that Both Google App Engine (GAE) and Google Compute Engine (GCE) are part of Google Cloud Platform (GCP), it would mean that Google Cloud VPN works for both GAE and GCE.

Also, the section for Cloud VNP is at the same level than GAE and GCE in the project console : enter image description here

But the documentation is located in /compute/docs which should not obviously be compatible with /appengine/docs

And here is a graph describing the tunnel, which talks only about GCE, which could exclude GAE : enter image description here

So, is GAE compatible with Cloud VPN or is it restricted to GCE only ?

like image 558
Maxime T Avatar asked May 10 '16 11:05

Maxime T

2 Answers

Google Cloud VPN securely connects your existing network to your Google Cloud Platform (GCP) network through an IPsec VPN connection. Therefore, only resources that are connected to GCP networks can communicate through Cloud VPN tunnels.

App Engine Flexible Environment is based on Google Compute Engine and consequently can connect to your remote network via Cloud VPNs. As described in this article, you can specify network settings in your app.yaml configuration file of your GAE Flexible application.

like image 57
Kamran Avatar answered Oct 18 '22 11:10

Kamran

EDIT Rodrigo Torres has pointed out that this is NOW possible.

(Leaving up the old post below. It is now WRONG!!!)

OLD POST:

Google App Engine standard CAN'T use VPN directly, however the new Flexible Google App Engine (now officially released, no longer in beta) CAN use it directly. Just set up google cloud VPN and your network from the console and make sure to include the network in your app.yaml file.

Flexible App Engine is be the easiest way for new applications to utilize VPN connections since there won't be any migration headaches.

For a standard app engine application that can't be ported over to flexible for whatever reason, you CAN still use a VPN connection - however, it requires a service to be running on flexible app engine (or compute engine), and your app will need to interface with it somehow. This may be the simplest method, as migrating from standard to flexible is not the simplest of tasks. I know - I've done it.

like image 21
KevinG Avatar answered Oct 18 '22 13:10

KevinG
Sign in to Comment

Related questions

App Engine and Firebase Hosting in One Domain
Whitelisting IPs of a Node.js App (hosted on GAE) to access MongoDB Atlas (hosted on GCP)
GWT, Google App Engine, TimerTask or Thread in ServiceImpl throw exception
What is the best Java text indexing library for Google App Engine?
Accessing related object key without fetching object in App Engine
How do I access session data in Jinja2 templates (Bottle framework on app engine)?
Google App Engine/Python - Change logging formatting
1MB quota limit for a blobstore object in Google App Engine?
App Engine identifier. Key vs Id
Google App Engine quota reached on test site. What am I doing wrong?
Objectify Relationships: One-to-Many, Can I do this efficiently?
How to verify Android id token on App Engine backend
GoogleAuthException: Unknown when authenticating with Cloud Endpoints
Why doesn't Google Cloud DataStore support multiple inequality filter on different properties?
Refresh Access Token with OAuth 2.0 Google App Engine
Find all Google Apps users not using two-factor authentication
CSS not loading when url contains a trailing slash
Android gradle task Google Appengine
Can I force the order of dependencies in my classpath with Gradle?
Unable to import sendgrid into GAE application

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!