Google's connectivity solutions enable you to connect your networks to Google in the following ways: Show
Try it for yourselfIf you're new to Google Cloud, create an account to evaluate how our products perform in real-world scenarios. New customers also get $300 in free credits to run, test, and deploy workloads. Get started for free Connecting to Google CloudWhen connecting to Google Cloud, you can choose among the following Google Cloud networking products. If you need to access only Google Workspace or supported Google APIs, see Connecting to Google Workspace and Google APIs.
For pricing, quotas, service level agreement (SLA), and release note information for all Network Connectivity products, see the Network Connectivity resources page. For high-level architectural guides and tutorials that describe networking scenarios for Google Cloud, see the Technical guides for networking. Cloud VPNGoogle Cloud offers two types of Cloud VPN gateways: HA VPN and Classic VPN. For information about moving to HA VPN, see Moving to HA VPN from Classic VPN. HA VPNHA VPN is a high-availability (HA) Cloud VPN solution that lets you securely connect your on-premises network to your VPC network through an IPsec VPN connection in a single region. HA VPN provides an SLA of 99.99% service availability. When you create an HA VPN gateway, Google Cloud automatically chooses two external IPv4 addresses, one for each of its fixed number of two interfaces. Each IPv4 address is automatically chosen from a unique address pool to support high availability. Each of the HA VPN gateway interfaces supports multiple tunnels. You can also create multiple HA VPN gateways. When you delete the HA VPN gateway, Google Cloud releases the IP addresses for reuse. You can configure an HA VPN gateway with only one active interface and one external IP address; however, this configuration does not provide a 99.99% service availability SLA. HA VPN supports the exchange of IPv6 traffic in Preview. In the API documentation and in HA VPN uses an external VPN gateway resource in Google Cloud to provide information to Google Cloud about your peer VPN gateway or gateways. For more information, see the following resources:
Cloud InterconnectNetwork Connectivity provides two options for extending your on-premises network to your VPC networks in Google Cloud. You can create a dedicated connection (Dedicated Interconnect) or use a service provider (Partner Interconnect) to connect to VPC networks. When choosing one of the following connection types, consider your connection requirements, such as the connection location and capacity. If you can't physically meet Google's network in a colocation facility to reach your VPC networks, you can use Partner Interconnect to connect to service providers that connect directly to Google:
Compare Cloud Interconnect solutionsThe following table highlights the key differences between Dedicated Interconnect and Partner Interconnect.
For more information, see the following resources:
Cloud RouterCloud Router is a fully distributed and managed Google Cloud service that uses the Border Gateway Protocol (BGP) to advertise IP address ranges. It programs custom dynamic routes based on the BGP advertisements that it receives from a peer. Instead of a physical device or appliance, each Cloud Router consists of software tasks that act as BGP speakers and responders. A Cloud Router also serves as the control plane for Cloud NAT. Cloud Router provides BGP services for the following Google Cloud products:
Each Cloud Router works with at least one of the networking connectivity products listed previously. When you connect an on-premises or multicloud network to Google Cloud, Cloud Router uses BGP to dynamically exchange routes between your Google Cloud VPC network and the remote network. Prefix and next hop changes automatically propagate between your VPC network and the other network without the need for static routes. You can also use Cloud Router to connect two VPC networks in Google Cloud. In this scenario, you connect the VPC networks by using two HA VPN and two Cloud Routers, one HA VPN and its associated Cloud Router on each network. Direct Peering and Carrier Peering do not use Cloud Routers. For more information, see the Cloud Router overview. Connecting your sites by using Google CloudUse Google Cloud to connect your sites to each other through a Network Connectivity Center hub. Network Connectivity CenterNetwork Connectivity Center supports connecting different enterprise sites outside of Google Cloud by using Google's network as a wide area network (WAN). On-premises networks can consist of on-premises data centers and branch or remote offices. Network Connectivity Center is a hub-and-spoke model for network connectivity management in Google Cloud. The hub resource reduces operational complexity through a simple, centralized connectivity management model. The hub is paired with Google's network to deliver reliable connectivity on demand. For definitions of hub and spoke, see Hubs and spokes. On-premises networks connect to a Network Connectivity Center hub by using spokes that have supported Google Cloud resources attached to them. The following diagram shows a Network Connectivity Center hub and its spokes. For example, a spoke can contain a VLAN attachment to an on-premises branch office in region
Router applianceRouter appliance is an alternative way of enabling connectivity between sites outside of Google Cloud through a Network Connectivity Center hub. You peer your Router appliance with Cloud Router to provide this connectivity. You can install an image from your vendor of choice onto one or more VMs that act as router appliance instances, or you can choose a supported vendor from Google Cloud Marketplace. You associate your router appliance instance with a Network Connectivity Center Router appliance spoke, which you attach to a Network Connectivity Center hub. Cloud Router uses interfaces configured with private IP addresses to establish BGP peering with router appliance instances. In that way, you establish routes among all locations. For more information, see the Router appliance overview. Connecting to Google Workspace and Google APIsIf you need access to only Google Workspace or supported Google APIs, you have the following options:
Direct PeeringDirect Peering enables you to establish a direct peering connection between your business network and Google's edge network and exchange high-throughput cloud traffic. This capability is available at any of more than 100 locations in 33 countries around the world. For more information about Google's edge locations, see Google's peering site. When established, Direct Peering provides a direct path from your on-premises network to Google services, including Google Cloud products that can be exposed through one or more public IP addresses. Traffic from Google's network to your on-premises network also takes that direct path, including traffic from VPC networks in your projects. Google Cloud customers must request that direct egress pricing be enabled for each of their projects after they have established Direct Peering with Google. For more information, see Pricing. Direct Peering exists outside of Google Cloud. Unless you need to access Google Workspace applications, the recommended methods of access to Google Cloud are Dedicated Interconnect or Partner Interconnect. Compare Direct Peering and Cloud InterconnectThe following table describes the differences between Direct Peering and Cloud Interconnect.
For more information, see the Direct Peering overview. Carrier PeeringCarrier Peering enables you to access Google applications, such as Google Workspace, by using a service provider to obtain enterprise-grade network services that connect your infrastructure to Google. When connecting to Google through a service provider, you can get connections with higher availability and lower latency, using one or more links. Work with your service provider to get the connection that you need. When to use Carrier Peering The following example describes a common use case for Carrier Peering. To access Google Workspace applications from an on-premises network, an organization might need a perimeter network to reach Google's network. The perimeter network enables organizations to expose an isolated subnetwork to the public internet instead of their entire network. Instead of setting up and maintaining a perimeter network, the organization can work with a service provider so that their traffic travels on a dedicated link from their systems to Google. With the dedicated link, the organization gets a higher availability and lower latency connection to Google's network. Unless you need to access Google Workspace applications as described in the preceding use case, Partner Interconnect is the recommended way to connect to Google through a service provider. To choose a product, see the Considerations section and the table that compares Carrier Peering with Cloud Interconnect. Considerations Review the following considerations to decide if Carrier Peering meets your needs:
Compare Carrier Peering and Cloud InterconnectThe following table describes the differences between Carrier Peering and Cloud Interconnect.
For more information, see the Carrier Peering overview. Connecting to CDN providersCDN InterconnectCDN Interconnect enables select third-party Content Delivery Network (CDN) providers to establish direct peering links with Google's edge network at various locations, which enables you to direct your traffic from your Virtual Private Cloud (VPC) networks to a provider's network. CDN Interconnect enables you to optimize your CDN population costs and use direct connectivity to select CDN providers from Google Cloud. Your network traffic egressing from Google Cloud through one of these links benefits from the direct connectivity to supported CDN providers and is billed automatically with reduced pricing. Setting up CDN InterconnectIf your CDN provider is already part of the program, you don't have to do anything. Traffic from supported Google Cloud locations to your CDN provider automatically takes advantage of the direct connection and reduced pricing. Work with your supported CDN provider to learn what locations are supported and how to correctly configure your deployment to use intra-region egress routes. CDN Interconnect does not require any configuration or integration with Cloud Load Balancing. If your CDN provider is not part of the program, contact your CDN provider and ask them to work with Google to get connected. Typical use cases for CDN Interconnect
For information about pricing and service providers, see the CDN Interconnect overview. What's next
What are the types of WAN connections?Types of WAN technologies. TCP/IP protocol suite. TCP/IP is a protocol suite of foundational communication protocols used to interconnect network devices on today's Internet and other computer/device networks. ... . Router. ... . Overlay network. ... . Packet over SONET/SDH (PoS) ... . Multiprotocol Label Switching (MPLS) ... . ATM. ... . Frame Relay.. What is a WAN carrier?A wide area network (WAN) is a communication network that connects geographical dispersed locations across cities, countries or even continents. In one of its common implementations, a wide area network connects an organization's local area networks (LANs) to one another.
What type of WAN technology provides a dedicated connection from the service provider?Private WAN infrastructure: Service providers may offer dedicated point-to-point leased lines, circuit-switched links, such as PSTN or ISDN, and packet-switched links, such as Ethernet WAN, ATM, or Frame Relay.
What is MAN connection?A metropolitan area network (MAN) is a computer network that connects computers within a metropolitan area, which could be a single large city, multiple cities and towns, or any given large area with multiple buildings. A MAN is larger than a local area network (LAN) but smaller than a wide area network (WAN).
|