Share custom static routes with a Shared VPC

anonymous · February 8, 2023, 11:04pm

Hi,

I’ve a host project like a shared VPC and this VPC share the subnets with another projects. I’d like to inspect all traffic this subnet with a firewall, so i created another specific project with a normal VPC and connect to a Shared VPC with VPC peering.

VPC A (HUB - firewall ) <—peering—> Shared VPC (Spoke) with a some subnets shared with another projects.

And i shared a custom static route to the firewall interface in VPC A with a VPC B. But its not working

VPC A - Export routes enabled
VPC B - Import routes enabled

I see the route in Shared VPC with a highest priority, but the traffic does not go to the firewall, but to the Interconnect that exists in the shared vpc

Marvin_Lucero · February 10, 2023, 4:35pm

HI @mateusotavio ,

Did you follow any documentations or guides when you set it up? If yes, can you share any link/s of it?

Based from the setup that you shared, only import routes are enabled on VPC A. Are you trying to have a bidirectional traffic between the VPC? Try enabling the Import subnet routes with public IP as it is not enabled in the same peering. You can follow this guide for more details.

Topic		Replies	Views
Transitive routing Compute Infrastructure cloud-vpn , cloud-interconnect , server-configuration	5	68	October 11, 2022
How Does GCP Flushes the static Routes pointing to unresponsive VM's Compute Infrastructure infrastructure-general , server-configuration	1	8	January 20, 2023
GCP routing Compute Infrastructure server-configuration	1	28	January 23, 2024

Share custom static routes with a Shared VPC

AI Suggested topics