Skip to Content

Using tags to configure firewall on Compute Engine

If you create a new instance on Google Compute Engine, below the tags that you can use to describe your instance, you’ll see two checkboxes.

Tags

Well, a nice feature was introduced that lets you create new firewall rules based on tags. Now, you don’t have to create a new network description for every single type of machine. One that lets http pass, one that lets mongodb pass… All you have to do is create a single network and activate/deactivate some rules based on tags. When you create a new instance, just add the appropriate tags, and the appropriate ports will be opened.

Tags

The default network for any Compute Engine is created with two rules that use tags. One lets http traffic pass, the other lets https traffic pass. The two checkboxes are only here as a mean to tag an instance.

comments powered by Disqus