Google Cloud

This guide will show you how to connect your Google Cloud to the GoodAccess Gateway via a site-to-site connection using the IPsec protocol.

Step 1 - Creating a new cloud connection

Click + Add new, enter the Cloud name and subnet, and select Gateway.

Choose IPSec Protocol, fill out the Settings configuration form, and click Save.

You may return to the configuration via the Edit button of your Cloud at any time.

Example of configuration (Default preset):

Cloud/Branch subnet - Subnet of your Google Cloud VPC network
Shared Secret - Create a new strong password
Public IP - IP of your Google Cloud VPN gateway
IKE Lifetime (Phase 1) - 8 hours (28800 seconds)
Tunnel Lifetime (Phase 2) - 1 hour (3600 seconds)
Dead Peer Detection Delay - 30 seconds
Encryption (Phase 1) - aes256
Encryption (Phase 2) - aes256
Integrity (Phase 1) - sha256
Integrity (Phase 2) - sha256
Diffie-Hellman Groups (Phase 1) - 16 - modp4096
Diffie-Hellman Groups (Phase 2) - 16 - modp4096

Step 2 - Creating a new VPN connection

Select Classic VPN, and click Continue.

VPN gateway

Name - Give the VPN gateway a name
Network - Select default or a specific VPC
Region - Preferably the region in which your resources lie
IP address - Create an IP address

Tunnels

Name - Give the tunnel a name
Remote peer IP address - IP of your GoodAccess Gateway
IKE version - IKEv2
IKE pre-shared key - Shared Secret (Step 1)
Routing options - Route-based
Remote network IP ranges - Subnet of your GoodAccess Gateway

Click Done and then Create.

You have now successfully connected your Google Cloud resources to GoodAccess.

Firewall rules

Make sure you allow connections from your GoodAccess Gateway private subnet to the resources in your VPC (e.g., virtual machines, databases, etc.).

Depending on your Google Cloud security setup, you may need to allow this communication in:

Cloud Firewall
Cloud NGFW

You may check the status of the connection in:

GoodAccess - Control Panel > Clouds & Branches > Edit button > Test connection
Google Cloud - Network Connectivity > VPN

PreviousAWS NextMicrosoft Azure

Last updated 8 days ago

Was this helpful?

Google Cloud

This guide will show you how to connect your Google Cloud to the GoodAccess Gateway via a site-to-site connection using the IPsec protocol.

Step 1 - Creating a new cloud connection

Click + Add new, enter the Cloud name and subnet, and select Gateway.

Choose IPSec Protocol, fill out the Settings configuration form, and click Save.

You may return to the configuration via the Edit button of your Cloud at any time.

Example of configuration (Default preset):

Cloud/Branch subnet - Subnet of your Google Cloud VPC network
Shared Secret - Create a new strong password
Public IP - IP of your Google Cloud VPN gateway
IKE Lifetime (Phase 1) - 8 hours (28800 seconds)
Tunnel Lifetime (Phase 2) - 1 hour (3600 seconds)
Dead Peer Detection Delay - 30 seconds
Encryption (Phase 1) - aes256
Encryption (Phase 2) - aes256
Integrity (Phase 1) - sha256
Integrity (Phase 2) - sha256
Diffie-Hellman Groups (Phase 1) - 16 - modp4096
Diffie-Hellman Groups (Phase 2) - 16 - modp4096

Step 2 - Creating a new VPN connection

Select Classic VPN, and click Continue.

VPN gateway

Name - Give the VPN gateway a name
Network - Select default or a specific VPC
Region - Preferably the region in which your resources lie
IP address - Create an IP address

Tunnels

Name - Give the tunnel a name
Remote peer IP address - IP of your GoodAccess Gateway
IKE version - IKEv2
IKE pre-shared key - Shared Secret (Step 1)
Routing options - Route-based
Remote network IP ranges - Subnet of your GoodAccess Gateway

Click Done and then Create.

You have now successfully connected your Google Cloud resources to GoodAccess.

Firewall rules

Make sure you allow connections from your GoodAccess Gateway private subnet to the resources in your VPC (e.g., virtual machines, databases, etc.).

Depending on your Google Cloud security setup, you may need to allow this communication in:

Cloud Firewall
Cloud NGFW

You may check the status of the connection in:

GoodAccess - Control Panel > Clouds & Branches > Edit button > Test connection
Google Cloud - Network Connectivity > VPN

PreviousAWS NextMicrosoft Azure

Last updated 8 days ago

Was this helpful?