We have a VPC which has VMs with private IP addresses only. There is no Cloud NAT attached to this VPC, so we should not be able to reach out public IPs.
Despite of the aboves, we experienced that we were able to curl the following public IP address from an internal VM. 220.127.116.11
The subnet of the VM has Private Google Access enabled and there is a default route to the default internet gateway, no other route entry matches for this IP. But there is no Cloud NAT.
- How is it possible to reach public IPs without NAT at all?
- Are there other reachable public IPs? (without Cloud NAT)
- What are these IPs used for?