APIs and reference
This page describes Google Cloud CLI commands and APIs that can be used with Virtual Private Cloud (VPC) networks.
Most networking gcloud CLI commands and APIs are part of Compute Engine. However, some services on this page use CLI commands or APIs that are not part of Compute Engine, for example, Serverless VPC Access and policy-based routes.
gcloud CLI and API references
Use the following resources and their methods when working with VPC networks.
- Addresses: Use to create internal and external IP address
resources, assign those address resources to Google Cloud resources, and modify
address resources.
gcloud, API - Firewall rules: Use to create and modify firewall rules
in your Google Cloud VPC network. Firewall rules enable you to allow or deny traffic
to or from virtual machine (VM) instances based on IP addresses, protocol, and ports.
gcloud, API - Forwarding rules: Use to create and modify forwarding rules in your VPC
network. Forwarding rules tell the network where to send matching packets
that enter or pass through the network.
gcloud, API - Networks: Use to create, modify, and peer VPC networks.
gcloud, API - Private Service Connect: Use to access managed services and offer
managed services to service consumers.
- Resources for service consumers: Use to access managed services privately
from inside your VPC network.
- Endpoints: Use to access managed services. Endpoints are deployed by
using forwarding rules.
gcloud, API - Backends: Use to connect to supported managed services by using a load balancer. Backends use Cloud Load Balancing resources. For more information, see Cloud Load Balancing API and gcloud references.
- Network attachments: Use to let service producer VPC networks initiate connections to consumer networks.
gcloud, API - Service connection policies: Use to automate deployment and connectivity
for eligible managed service instances.
gcloud, API
- Endpoints: Use to access managed services. Endpoints are deployed by
using forwarding rules.
- Resources for service producers: Use to host managed services in their own separate VPC networks and offer a private connection to their consumers.
- Resources for service consumers: Use to access managed services privately
from inside your VPC network.
- Routes: Use to create and modify VPC network routes.
- Shared VPC: Use to share a VPC network with other
projects and control that sharing. In the API, modify these settings by
using the
projects
resource.
gcloud, API - Subnets: Use to create, modify, and delete subnets in a VPC network.
gcloud, API - Serverless VPC Access: Use to create, modify, and delete
Serverless VPC Access connectors.
gcloud, API - VPC Flow Logs: Use to monitor VPC networks and
understand your network usage. In the gcloud CLI and API, configure VPC Flow Logs
by using the
subnets
command group and resource respectively.
gcloud, API