This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Share custom static routes with a Shared VPC

Posted on 02-08-2023 03:04 PM
mateusotavio
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hi, 

I've a host project like a shared VPC and this VPC share the subnets with another projects. I'd like to inspect all traffic this subnet with a firewall, so i created another specific project with a normal VPC and connect to a Shared VPC with VPC peering. 

VPC A (HUB - firewall ) <---peering---> Shared VPC (Spoke) with a some subnets shared with another projects.

 

And i shared a custom static route to the firewall interface in VPC A with a VPC B. But its not working

VPC A - Export routes enabled
VPC B - Import routes enabled

I see the route in Shared VPC with a highest priority, but the traffic does not go to the firewall, but to the Interconnect that exists in the shared vpc

0 1 575
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
Marvin_Lucero
Staff
Reply posted on --/--/---- --:-- AM

HI @mateusotavio ,

Did you follow any documentations or guides when you set it up? If yes, can you share any link/s of it?

Based from the setup that you shared, only import routes are enabled on VPC A. Are you trying to have a bidirectional traffic between the VPC? Try enabling the `Import subnet routes with public IP` as it is not enabled in the same peering. You can follow this guide for more details. 

0 Likes
Top Labels in this Space
Top Solution Authors
View all