GCP VPN - Multi-hop VPN
175 views
Skip to first unread message
André Cova
Oct 29, 2020, 10:02:57 AM10/29/20
to cloud-dns-discuss
Hi all,
Is it possible to deploy a multi-hop VPN?
I have the following VPNs created:
On-premise Europe -> GCP
GCP -> On-premise America
Is it possible to route traffic between On-Premise Europe and On-premise America using this setup (GCP in the middle)? How to route traffic from the first VPN to the second?
On-premise Europe -> GCP
GCP -> On-premise America
Is it possible to route traffic between On-Premise Europe and On-premise America using this setup (GCP in the middle)? How to route traffic from the first VPN to the second?
Thanks
Marcel Florez
Oct 29, 2020, 12:53:49 PM10/29/20
to cloud-dns-discuss
Hello,
I understand you have a this topology: On-prem (EU) -> VPN TUNNEL -> GCP -> VPN TUNNEL - On-prem (AMER).
As per my understanding, it is possible to connect both on-prem sites using the tunnels. Depending on your VPN type and configuration you'd need to create static routes or use the BGP to advertise the custom and remote routes. I did a quick recreation using Dynamic VPN tunnel type with BGP and I was able to connect both sites successfully. In my scenario ( BGP ) I just needed to add a Custom IP range (From on-prem) to be advertised by the Cloud Routers. See [1]. Doing this, a dynamic route to these on-prem ranges was added to the VPC routes configuration.
To better assist you, we'd need a bit more information regarding the type and configuration of the created VPC tunnel. Both type of tunnels, Classic or Dynamic will work but configuration might change to accomplish the communication.
Please note that, as this is a technical question, and as this forum is meant for general questions about the platform, it might be better to post this question at serverfault.com (with the tunnel information) where you have access to a large community of enthusiasts and experts to share ideas with and get support from. Google group is a discussion forum where you would likely find information like service status updates and release notes, and ranging from book recommendations to creative shortcuts [2]. Considering this, it might not be the right platform to report this type of situation.
Reply all
Reply to author
Forward
0 new messages