Unable to access filestore from a different region in the same network

[Bala Naga Gopala Krishnan]

I created a filestore instance in us-east1-b. I am able to access the filestore from VM's in the same region.

But when i try to access the filestore from a different region (us-central1-a) in the same network, i am getting the connection timed out.

I have created a firewall rule for both ingress and egress for all instances in the network with all ip's allowing all ports.

But still i am unable to access the filestore in a different region from same network.

I searched a lot in google documentation but couldn't get help, so need some inputs guys, thanks in advance.

Regards,

Bala

[Eriel Thomas]

Hey Bala,

Filestore instances should be accessible from all regions. 

Did you happen to use IP-based ACLs on your instance (http://cloud/filestore/docs/creating-instances#configuring_ip-based_access_control)? If so, do the ACLs include the IP of the client VM in the new region?

If that doesn't help resolve the issue, you could try creating a Connectivity Test (http://cloud/network-intelligence-center/docs/connectivity-tests/concepts/overview) to see if that tool detects any network issues between your client VM and the Filestore instance.

Thanks,

Eriel

--
© 2018 Google Inc. 1600 Amphitheatre Parkway, Mountain View, CA 94043
 
Email preferences: You received this email because you signed up for the Cloud Filestore Discussion Google Group (google-cloud-fi...@googlegroups.com) to participate in discussions with other members of the Cloud Filestore community and the Cloud Filestore Team.
---
You received this message because you are subscribed to the Google Groups "Google Cloud Filestore Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-filestor...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-filestore-discuss/a19c031f-0308-4930-a6d0-dcab8f098601n%40googlegroups.com.

[Bala Naga Gopala Krishnan]

Hi Eriel,

Thanks for your reply.

The NFS is setup with allow access to all (no restrictions) and the firewall rules also accept all ports.

The connectivity test also done.

I have attached a detailed document from scratch what i have done to give you complete details (a-z). I have got stuck here to setup NFS across regions in a network (custom subnets) and looking for a kind support.

Please check and let us know where are we missing or what could be done.

Regards,

Bala

[Eriel Thomas]

It looks like the problem is the use of non-RFC1918 IP ranges for the "subnet-f" and "subnet-g".

Filestore current only supports the RFC 1918 Private IP Address ranges:

• 10.0.0.0/8
• 172.16.0.0/12
• 192.168.0.0/16
  

The "subnet-f" is created at 162.0.0.0/20 which is outside of these ranges. Any clients in this subnet will have a non-RFC1918 IP address and won't be able to access the Filestore instance.

If you create the subnet within the RFC 1918 ranges, cross region access should work.

Thanks,

Eriel

To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-filestore-discuss/e93374fd-d915-45e2-889d-f5eec2e0058bn%40googlegroups.com.

[Bala Naga Gopala Krishnan]

Thanks a lot, Eriel. It worked fine. You have saved me 100s of hours. Thanks a lot once again. Sorry for the delayed reply.

Regards,

Bala

--

 bala