GCP - No Cloud NAT but given public IP leaves VPC

0 votes

We have a VPC which has VMs with private IP addresses only. There is no Cloud NAT attached to this VPC, so we should not be able to reach out public IPs.

Despite of the aboves, we experienced that we were able to curl the following public IP address from an internal VM. 64.233.166.153
The subnet of the VM has Private Google Access enabled and there is a default route to the default internet gateway, no other route entry matches for this IP. But there is no Cloud NAT.

My questions:

  1. How is it possible to reach public IPs without NAT at all?
  2. Are there other reachable public IPs? (without Cloud NAT)
  3. What are these IPs used for?
Mar 30, 2022 in GCP by Rahul
 • 3,380 points 563 views

1 answer to this question.

0 votes

Looks like the IP address belongs to a GCP resource/API

As per the GCP documentation where PGA ( Private Google Access) is enabled GCP VM instances without external IP can connect to the set of external IP addresses used by Google's API's and services.by enabling Private Google Access on the subnet used by the VM's network interface. 

This could be the potential reason why your VM was able to speak with the Public IP 

https://cloud.google.com/vpc/docs/configure-private-google-access

answered Mar 31, 2022 by Korak
 • 5,820 points

Related Questions In GCP

+2 votes
1 answer

How to create a VPC in GCP Cloud?

Hi@akhtar, You can create a private network in ...READ MORE

answered Aug 24, 2020 in GCP by MD
 • 95,440 points 836 views
+2 votes
1 answer

How to do VPC peering in GCP Cloud?

Hi@akhtar, If you have created your VPC in ...READ MORE

answered Aug 24, 2020 in GCP by MD
 • 95,440 points 708 views
0 votes
0 answers

Cloud function on GCP: no exit log

I have a google cloud function triggered ...READ MORE

Apr 11, 2022 in GCP by Rahul
 • 3,380 points 388 views
0 votes
1 answer

Why should I choose GCP over any other cloud platforms?

There are various Cloud service providers in ...READ MORE

answered Sep 20, 2019 in GCP by Sirajul
 • 59,230 points 1,793 views
0 votes
1 answer

Does Google cloud platform (GCP) offer IaaS ? Or just PaaS?

GCP provides IaaS as well, although it ...READ MORE

answered Sep 20, 2019 in GCP by Sirajul
 • 59,230 points 6,566 views
0 votes
1 answer

How do I create a Google Cloud Platform (GCP) account?

In order to access the services provided ...READ MORE

answered Sep 20, 2019 in GCP by Sirajul
 • 59,230 points 2,514 views
0 votes
1 answer

GCP v/s AWS : Which cloud provider to choose?

Depends on what exactly you are looking ...READ MORE

answered Sep 23, 2019 in GCP by Sirajul
 • 59,230 points 712 views
0 votes
1 answer

Deciding on a Cloud load balancer in gcp.

Google Cloud Platform Load Balancing enables you ...READ MORE

answered Sep 26, 2019 in GCP by Sirajul
 • 59,230 points 680 views
0 votes
1 answer

Is there any API for GCP Pricing Calculator for https://cloud.google.com/compute/all-pricing?

You can take a look at the ...READ MORE

answered Mar 9, 2022 in GCP by Korak
 • 5,820 points 1,801 views
0 votes
1 answer

Google cloud: How to list all service-accounts from all Projects in GCP

Your code sample suggests you want the ...READ MORE

answered Mar 14, 2022 in GCP by Korak
 • 5,820 points 3,585 views
webinar REGISTER FOR FREE WEBINAR X
REGISTER NOW
webinar_success Thank you for registering Join Edureka Meetup community for 100+ Free Webinars each month JOIN MEETUP GROUP
"PMP®","PMI®", "PMI-ACP®" and "PMBOK®" are registered marks of the Project Management Institute, Inc. MongoDB®, Mongo and the leaf logo are the registered trademarks of MongoDB, Inc.