This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Request to Enable Cloud SQL Access (Project A → Project B VM) via VPN

Posted a week ago
Thamizh-G
New Member
Reply posted on --/--/---- --:-- AM

Hi Team,

I need to establish private connectivity from a VM in Project B to a Cloud SQL instance (Private IP) hosted in Project A, using an existing VPN tunnel between the two projects.

Here’s what I’ve already done:

  • The VPN tunnel between Project A and Project B is active and BGP sessions are established.

  •  The Cloud SQL instance in Project A is using Private IP and is attached to the correct VPC.

  • Firewall rules are configured to allow traffic (TCP:5432/3306) from Project B’s subnet to the Cloud SQL private IP.

  •  The Cloud Router in Project A is advertising the Cloud SQL subnet to Project B via BGP.

  •  A valid route exists in Project B for the Cloud SQL subnet through the VPN.

Additional Info:

I ran a Connectivity Test, and the results were:

  • Overall configuration analysis result:  Reachable

  • Last live data plane analysis result:  Not eligible

📎 Screenshot attached.

GCP(2025-07-01).png

 

Questions:

  • Is the "Not eligible" result expected due to the Cloud SQL instance being in a Google-managed service network?

  • Since the tool says Reachable, can I assume the VM in Project B will be able to connect to the Cloud SQL instance?

  • Is there anything else I should validate or configure to ensure end-to-end connectivity?

Thanks,
Thamizhmani G

 

0 0 13
Topic Labels
0 Likes
0 REPLIES 0
Top Solution Authors
View all