VPC (Virtual Private Cloud) Module

The VPC module creates a VPC with custom subnets, firewall rules, and NAT gateway for internet access. It provides secure networking foundation with flow logging enabled and sets up proxy subnets for advanced load balancing scenarios.

Key Components:

Availability Zones: Distributes resources across multiple zones within the specified region for redundancy and high availability.
Subnets: Creates primary and proxy subnets within the specified VPC CIDR block:
- Primary subnet: Hosts GKE nodes with private Google access enabled
- Proxy subnet: Dedicated subnet for internal load balancing (advanced architecture only)
Cloud NAT Gateway: Ensures that instances in private subnets can access the internet for container image pulls and external dependencies.
Static IP Addresses: Provisions external static IP for ingress and NAT egress for consistent networking.
Firewall Rules: Configures security rules to allow internal traffic within the VPC and proxy subnet access for load balancers.
VPC Flow Logs: Enables comprehensive network monitoring with 15-minute aggregation intervals and full metadata collection.

Versions of this Page

Deployment Overview

Planning Your Deployment

Instance Sizing

Authentication and identity providers

Other authentication methods

Storage Architecture

Installing Using Containers

Installing On Bare Metal or Cloud Instance

Reference Architectures

Installing Load Balancers

Deploying Auxiliary Services

Configuration Settings

Managing Your Deployment

Testing Your Deployment

VPC (Virtual Private Cloud) Module

Enter search term