Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

dreams

What I want to set:

Cloud SQL instance with private IP, Postgresql database
A VM with a public IP and one private IP on the same VPC network as the SQL instance (VM, SQL instance and VPC are all in the same region)
The VM's service account has sufficient Cloud SQL client/viewer permissions
Possibility to connect to SQL instance from VM.

What's wrong?

Any attempt to actually use the connection (e.g. from the psql client or db-migrate) will hang - e.g. psql --host 10.78.0.3 -U gcp-network-issue-demo-staging-db-user gcp-network-issue-demo-staging-databasenot prompt for a password, just sit there.
If I remove the VM's public IP address from the settings, the connection works fine. However, I need a publicly accessible VM that other services can connect to.

I'm assuming the psql connection attempt is going through the wrong network interface or something (it's probably just my ignorance of network stuff) - how do I get this to work? What am I missing?

PS: This is basically the same issue as failing to connect to a Google Cloud SQL instance on a private IP from a VM with a private IP and a public IP , but the commenters there seem to want a Terraform related question as well as a connection to problem related issues.

Some screenshots:

VM IP:

Database IP:

VM's network configuration:

Private IP configuration for the DB instance:

Here are the settings for the private network:

I don't understand why the private IP of the DB instance (10.78.0.3) is not an IP from the range of the private network (10.2.0.0-10.2.0.24, right?)..? Is that my problem?

Khalid K

To answer your question:

I don't understand why the private IP of the DB instance (10.78.0.3) is not an IP from the range of the private network (10.2.0.0-10.2.0.24, right?)..?

The Cloud SQL instance is assigned an IP address from the allocated range. When you setup a private services access a VPC peering is created between your VPC gcp-network-issue-demo-staging-network and the service producer VPC network that uses the allocated range 10.78.0.0/16

Also, looking at your VM network configuration, I see that the VM has two Nics in two different VPCs ( default and gcp-network-issue-demo-staging-network ) . In your case you can only use one Nic.

Next, make sure your VMs only use the VPC network you used to create the private connection . After doing this, you should be able to connect to the Cloud SQL instance IP with:

telnet 10.78.0.3 3306

Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

dreams What I want to set: Cloud SQL instance with private IP, Postgresql database A VM with a public IP and one private IP on the same VPC network as the SQL instance (VM, SQL instance and VPC are all in the same region) The VM's service account has sufficien

Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

Connecting to Google Cloud SQL instance on private IP fails from VM with both private and public IP

dreams What I want to set: Cloud SQL instance with private IP, Postgresql database A VM with one public IP and one private IP on the same VPC network as the SQL instance (VM, SQL instance and VPC are all in the same region) The VM's service account has suffici

Connecting to Google Cloud SQL instance on private IP fails from VM with both private and public IP

What is the interface protocol between Compute Engine VM instance and cloud storage bucket (public/private IP)?

and I am using node.js method to create a new compute engine VM - zone.createVM(name, config) this VM will upload files to cloud storage bucket using python method - blob.upload_from_filename(src) my bucket location type is Multi-region . My VM region is us-ce

What is the interface protocol between Compute Engine VM instance and cloud storage bucket (public/private IP)?

Unable to connect to Cloud SQL from Cloud Run after enabling private IP and turning off public IP

Kramps I have a postgreSQL CLoud SQL instance connected via UNIX socket and getting the instance name from the Cloud Run container according to the documentation. With the public IP, this connection works fine. I wanted to turn off the public IP at the time an

Unable to connect to Cloud SQL from Cloud Run after enabling private IP and turning off public IP

Convert CloudSQL instance from public IP to private IP

Zama Ques We cannot cast an CloudSQLinstance Public IPof Private IP. The allocation Private IPis in use .SharedVPCPrivate service Connection For me it fails with the following error $ gcloud --project=<project id> beta sql instances patch test1-instance --n

Convert CloudSQL instance from public IP to private IP

I want to know how to communicate between computers that got private IP from the same public IP

fortune teller I would like to know how to communicate between computers that got private IP from the same public IP. The server uses Node.js, the private IP address granted is 172.30.6.191, and the client's private IP address is 172.30.7.191. But why can't yo

How do I deny IP addresses from connecting to my system?

Nux Is there a way to deny IP addresses from connecting to my PC? Is there a way to block an IP from connecting to a specific port? Thomas Ward Before proceeding, please note a few things. Most of the Internet does not have static IP addresses. So proxies, Tor

How do I deny IP addresses from connecting to my system?

How to attach public and private reserved IP to GCE instance?

red 888 https://www.terraform.io/docs/providers/google/r/compute_instance.html I want to keep an external and internal IP, but how do I attach both? I don't see an example in the tf documentation. It only has network_ip - (Optional) The *private* IP address ..

How to attach public and private reserved IP to GCE instance?

How to get instance id/name from public ip address of VM in azure via python sdk

Explorer def get_instance_id_from_pip(self, pip): subscription_id="69ff3a41-a66a-4d31-8c7d-9a1ef44595c3" compute_client = ComputeManagementClient(self.credentials, subscription_id) network_client = NetworkManagementClient(self.credentials, subs

Unable to enable private IP for my Postgres Cloud SQL instance

McGinn When I try to enable private IP on my Cloud SQL instance (PostgreSQL 9.6), I get the following error message: Network association failed due to the following error: set Service Networking service account as servicenetworking.serviceAgent role on consume

Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

What I want to set:

What's wrong?

Related

Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

Connecting to a Cloud SQL instance from a VM with a public IP and private IP - how do I ensure the correct network interface is selected for the connection?

Connecting to Google Cloud SQL instance on private IP fails from VM with both private and public IP

Connecting to Google Cloud SQL instance on private IP fails from VM with both private and public IP

Connecting to Google Cloud SQL instance on private IP fails from VM with both private and public IP

Connecting to Google Cloud SQL instance on private IP fails from VM with both private and public IP

Connecting to Google Cloud SQL instance on private IP fails from VM with both private and public IP

What is the interface protocol between Compute Engine VM instance and cloud storage bucket (public/private IP)?

What is the interface protocol between Compute Engine VM instance and cloud storage bucket (public/private IP)?

Unable to connect to Cloud SQL from Cloud Run after enabling private IP and turning off public IP

Unable to connect to Cloud SQL from Cloud Run after enabling private IP and turning off public IP

Unable to connect to Cloud SQL from Cloud Run after enabling private IP and turning off public IP

Unable to connect to Cloud SQL from Cloud Run after enabling private IP and turning off public IP

Convert CloudSQL instance from public IP to private IP

Convert CloudSQL instance from public IP to private IP

Convert CloudSQL instance from public IP to private IP

Convert CloudSQL instance from public IP to private IP

Convert CloudSQL instance from public IP to private IP

Convert CloudSQL instance from public IP to private IP

I want to know how to communicate between computers that got private IP from the same public IP

How do I deny IP addresses from connecting to my system?

How do I deny IP addresses from connecting to my system?

How do I deny IP addresses from connecting to my system?

How to attach public and private reserved IP to GCE instance?

How to attach public and private reserved IP to GCE instance?

How to get instance id/name from public ip address of VM in azure via python sdk

Unable to enable private IP for my Postgres Cloud SQL instance

Ranking