Author Archives: anuj - Page 20
VPC Peering versus Private Service Connect
This content is password protected. To view it please enter your password below: Password:
Google Cloud Armor
Additional WebSite Protection using Google's Cloud Armor Load Balancers in front of your web app are common in most IaaS or PaaS cloud deployments. However, load balancers by themselves cannot…
Google Workspace Groups and Google cloud console groups
Google Cloud IAM does allow you to handle groups of users - and assign roles to entire groups. However, these groups are NOT created within the cloud console. These groups…
Logs in GCP World
These are quick notes about the types of logs and what they record on the GCP platform. Network Specific Logs VPC Flow Logs, Firewall Logs -> These should be obvious.…
When multiple direct routes exist
Say we have an ec2 instance within a private subnet on AWS (or GCP). Let us also say that there are two potential ways for it to access an AWS…
get iam policy – your gcloud friend
Anytime someone asks you - Can you show me all the administrators for this GCP org? Can you show me who are the project owners for these projects? Can you…
Web App Security Scans on GCP
This content is password protected. To view it please enter your password below: Password:
Site to Site VPN – Alert on Connection Dropped
To create an alarm for Site-to-Site VPN connection state Open the CloudWatch console at In the navigation pane, choose Alarms, Create alarm. Choose Select metric. Choose VPN, then choose VPN Connection Metrics. Select your Site-to-Site…
Migrate existing Project into an existing GCP Org
Projects in Organizations versus Billing Accounts Moving a Billing account from one org to another is different from moving a project. You may even want to CHANGE the existing billing…
Admin.google groups and Organizational Google Workspace Domains
Use case - Only allow users from specific domains into GCP Organization Policy : Allow only allowed Domains into GCP As a GCP Admin, this is a policy you will…