Operating system details

Stay organized with collections Save and categorize content based on your preferences.

Some operating system images are customized specifically to run on Compute Engine and have notable differences from the standard images that come directly from the operating system vendors.

For information about how support and maintenance is provided for these operating systems on Compute Engine, based on support package, license type, and image lifecycle stage, see Support and maintenance policy for OS images.

The following sections provide more information about these differences.

CentOS

CentOS Linux is a free operating system that is derived from Red Hat Enterprise Linux (RHEL). Google Cloud builds and supports the CentOS images available for Compute Engine. There is no license fee for using CentOS with Compute Engine.

CentOS Stream is a distribution that is continuously delivered and tracks just ahead of RHEL development. CentOS Stream is positioned as a midstream development platform between Fedora Linux and RHEL.

Automatic updates

By default, this operating system is configured to install security updates by using the RHEL yum-cron or dnf-automatic tool. The updates have the following behaviors:

  • The yum-cron or dnf-automatic does not upgrade VMs between major versions of the operating system.
  • The upgrade tool is configured to only apply updates marked by the vendor as security updates.
  • Some updates require reboots to take effect. These reboots do not happen automatically.
Image configuration

The CentOS and CentOS Stream images that are provided by Compute Engine, have the following differences in configuration from standard CentOS images:

Account configuration

  • There are no local users configured with passwords.

Bootloader configuration

  • To force faster boot times, the boot timeout in the grub configuration is set to 0.
  • The I/O scheduler is set to noop.

Network configuration

  • IPv6 is enabled.
  • The DHCP client is set to retry every 10 seconds instead of every 5 minutes. The client is also set to persistent mode instead of oneshot.
  • The SSH server configuration is set up as follows:
    • Password authentication is disabled.
    • To prevent SSH disconnections, ServerAliveInterval and ClientAliveInterval are set to 7 minutes.
    • Root login is disabled.
  • /etc/udev/rules.d/75-persistent-net-generator.rules is disabled.
  • To prevent MAC addresses from persisting, /etc/udev/rules.d/70-persistent-net.rules is removed.
  • By default, all traffic is allowed through the guest firewall because the VPC firewall rules overrides the guest firewall rules. The guest firewall rules remains enabled and can be configured through normal CentOS methods.
  • VMs based on Google-provided Linux images get their interface MTU from the attached VPC MTU. VMs based on custom images or older Linux images may have their MTU's hardcoded. In these cases, you have to change the setting yourself if you want to connect the interface to a network with an MTU other than 1460. For more information about network and interface MTU, see the maximum transmission unit overview.

Package system and repository configuration

  • Google Cloud repositories are enabled to install packages for the Compute Engine guest environment and the Google Cloud CLI.
  • Repositories are set to use the CentOS default mirror network.
    • For CentOS Stream 8, the PowerTools repository is enabled.
    • For CentOS 7, EPEL is enabled.
  • Automatic updates are configured as follows:
    • For CentOS 7, automatic updates are enabled by using yum-cron.
    • For CentOS Stream, automatic updates are enabled by using dnf automatic.
    • For all versions, the update_cmd property is set to security.However, by default CentOS does not offer security tagged repositories.
    • IPv6 endpoints are disabled in the yum or dnf config files for all versions.

Storage configuration

  • By default, images are 20 GB. This is the recommended minimum size.
  • The partition table is GPT, and there is an EFI partition to support booting on UEFI.
  • The floppy module is disabled because there is no floppy disk controller on Compute Engine .

Time configuration

  • The NTP server is set to use the Compute Engine metadata server.

General information

OS version Image project Image family Machine series Lifecycle stage EOL and image deprecation date
CentOS Stream 9 centos-cloud centos-stream-9 All except T2A GA TBD
CentOS Stream 8 centos-cloud centos-stream-8 All except T2A GA May 2024
CentOS 8 N/A N/A N/A EOL Dec 2021
CentOS 7 centos-cloud centos-7 All except T2A GA June 30, 2024
CentOS 6 N/A N/A N/A EOL November 30, 2020

Security features

OS version Shielded VM support Confidential VM support
CentOS Stream 9
CentOS Stream 8
CentOS 8
CentOS 7
CentOS 6

User space features

OS version Guest environment installed gcloud CLI installed OS Login supported Suspend and resume supported
CentOS Stream 9
CentOS Stream 8
CentOS 8
CentOS 7
CentOS 6

Supported interfaces

OS version SCSI NVMe Google Virtual NIC (gVNIC) Multiple network interfaces
CentOS Stream 9
CentOS Stream 8
CentOS 8
CentOS 7
CentOS 6

Compute optimization

OS version GPU supported
CentOS Stream 9
CentOS Stream 8
CentOS 8
CentOS 7
CentOS 6

VM Manager

OS version OS Config agent installed OS inventory supported OS configuration supported OS patch supported
CentOS Stream 9
CentOS Stream 8
CentOS 8
CentOS 7
CentOS 6

Import

For operating system support information on migrating VMs using Migrate to Virtual Machines, see supported operating systems.

OS version Import disk Import virtual appliance Import machine image
CentOS Stream 9
CentOS Stream 8
CentOS 8
CentOS 7
CentOS 6

Licenses

OS version License type License
CentOS Stream 9 Free https://www.googleapis.com/compute/v1/projects/centos-cloud/global/licenses/centos-stream-9
CentOS Stream 8 Free https://www.googleapis.com/compute/v1/projects/centos-cloud/global/licenses/centos-stream
CentOS 8 EOL EOL
CentOS 7 Free https://www.googleapis.com/compute/v1/projects/centos-cloud/global/licenses/centos-7
CentOS 6 EOL EOL

Container-Optimized OS (COS)

Container-Optimized OS from Google is an operating system image for your Compute Engine instances that is optimized for running Docker containers. Google Cloud builds and supports the Container-Optimized OS images available for Compute Engine. There is no license fee for using Container-Optimized OS with Compute Engine.

For more information about Container-Optimized OS, see the Container-Optimized OS overview or release notes.

Automatic updates

By default, this operating system is configured to install security updates by using Automatic updates. The updates have the following behaviors:

  • These automatic updates from the operating system vendor do not upgrade instances between major versions of the operating system.
  • Some updates require reboots to take effect. These reboots do not happen automatically.
Image configuration

Network configuration

  • VMs based on Google-provided Linux images get their interface MTU from the attached VPC MTU. VMs based on custom images or older Linux images may have their MTU's hardcoded. In these cases, you have to change the setting yourself if you want to connect the interface to a network with an MTU other than 1460. For more information about network and interface MTU, see the maximum transmission unit overview.

General information

OS version Image project x86 image family Arm image family Machine series Lifecycle stage EOL and image deprecation date
COS 101 LTS cos-cloud cos-101-lts cos-arm64-101-lts All GA September 2024
COS 97 LTS cos-cloud cos-97-lts N/A All except T2A GA March 2024
COS 93 LTS cos-cloud cos-93-lts N/A All except T2A GA October 2023
COS 89 LTS cos-cloud cos-89-lts N/A All except T2A GA March 2023
COS 85 LTS EOL EOL N/A N/A EOL September 2022
COS 81 LTS EOL EOL N/A N/A EOL September 2021

Security features

OS version Shielded VM support Confidential VM support
COS 101 LTS
COS 97 LTS
COS 93 LTS
COS 89 LTS
COS 85 LTS
COS 81 LTS

User space features

OS version Guest environment installed gcloud CLI installed OS Login supported Suspend and resume supported
COS 101 LTS
COS 97 LTS
COS 93 LTS
COS 89 LTS
COS 85 LTS
COS 81 LTS

Supported interfaces

OS version SCSI NVMe Google Virtual NIC (gVNIC) Multiple network interfaces
COS 101 LTS
COS 97 LTS
COS 93 LTS
COS 89 LTS
COS 85 LTS
COS 81 LTS

Compute optimization

OS version GPU supported
COS 101 LTS
COS 97 LTS
COS 93 LTS
COS 89 LTS
COS 85 LTS
COS 81 LTS

VM Manager

OS version OS Config agent installed OS inventory supported OS configuration supported OS patch supported
COS 101 LTS
COS 97 LTS
COS 93 LTS
COS 89 LTS
COS 85 LTS
COS 81 LTS

Import

For operating system support information on migrating VMs using Migrate to Virtual Machines, see supported operating systems.

OS version Import disk Import virtual appliance Import machine image
COS 101 LTS
COS 97 LTS
COS 93 LTS
COS 89 LTS
COS 85 LTS
COS 81 LTS

License

OS version License type License
COS 101 LTS Free https://www.googleapis.com/compute/v1/projects/cos-cloud/global/licenses/cos
COS 97 LTS Free https://www.googleapis.com/compute/v1/projects/cos-cloud/global/licenses/cos
COS 93 LTS Free https://www.googleapis.com/compute/v1/projects/cos-cloud/global/licenses/cos
COS 89 LTS Free https://www.googleapis.com/compute/v1/projects/cos-cloud/global/licenses/cos
COS 85 LTS EOL EOL
COS 81 LTS EOL EOL

Debian

Debian is a free operating system offered by the Debian community. Google Cloud builds and supports the Debian images available for Compute Engine. There is no license fee for using Debian with Compute Engine.

Automatic updates

By default, this operating system is configured to install security updates by using the Debian UnattendedUpgrades tool. The updates have the following behaviors:

  • The UnattendedUpgrades tool does not upgrade VMs between major versions of the operating system.
  • The UnattendedUpgrades tool is configured to only automatically apply updates obtained from the Debian security repository.
  • Some updates require reboots to take effect. These reboots do not happen automatically.
Image configuration

The Debian image build configuration is available in an open source GitHub repository.

  • Debian build tools come from the Debian Cloud team image project.

Debian images are always built with the latest Debian packages which reflect the most recent Debian point release.

The Debian images that are provided by Compute Engine, have the following differences in configuration from standard Debian images:

Account configuration

  • There are no local users configured with passwords.

Bootloader configuration

  • To force faster boot times, the boot timeout in the grub configuration is set to 0.
  • The I/O scheduler is set to noop.
  • To allow SCSI block multi-queue usage, scsi_mod.use_blk_mq is enabled.

Network configuration

  • IPv6 is enabled.
  • The SSH server configuration is set up as follows:
    • Password authentication is disabled.
    • Root login is disabled.
  • To prevent MAC addresses from persisting, /etc/udev/rules.d/70-persistent-net.rules is removed.
  • Debian 9 does not use predictive network interface naming. In the grub kernel command-line arguments, net.ifnames=0 is set. Therefore, network interfaces still use the traditional ethN naming, with the default interface always being eth0.
  • VMs based on Google-provided Linux images get their interface MTU from the attached VPC MTU. VMs based on custom images or older Linux images may have their MTU's hardcoded. In these cases, you have to change the setting yourself if you want to connect the interface to a network with an MTU other than 1460. For more information about network and interface MTU, see the maximum transmission unit overview.

Package system and repository configuration

  • Google Cloud repositories are enabled to install packages for the Compute Engine guest environment and the Google Cloud CLI. The guest environment packages and the Google Cloud CLI packages are installed and enabled by default.
  • The APT sources are set to use the Debian CDN.
  • The Unattended-upgrades package is installed and configured to download and install Debian security updates daily. This can be configured or disabled by changing the values in /etc/apt/apt.conf.d/50unattended-upgrades and /etc/apt/apt.conf.d/02periodic.
  • The cloud-initramfs-growroot package is removed and replaced with the Google supported gce-disk-expand package.
  • Debian 10+ includes the following:
    • The linux-image-cloud-amd64 kernel instead of the generic Debian kernel.
    • The haveged package to provide entropy.

Storage configuration

  • Images are 10 GB by default.
  • The partition table is GPT, and there is an EFI partition to support booting on UEFI. There is also an MBR boot block to support BIOS.
  • The floppy module is disabled because there is no floppy disk controller on Compute Engine.

Time configuration

  • The NTP server is set to use the Compute Engine metadata server.

General information

OS version Image project x86 image family Arm image family Machine series Lifecycle stage EOL and image deprecation date
Debian 11 debian-cloud debian-11 debian-11-arm64 All GA June 2026
Debian 10 debian-cloud debian-10 N/A All except T2A, M3 LTS* June 2024
Debian 9 N/A N/A N/A N/A EOL June 2022
Debian 8 N/A N/A N/A N/A EOL June 2018

*Debian LTS: Debian is supporting this release with Debian LTS. Critical security updates are provided via the Debian LTS project for the duration of the LTS lifecycle.

Security features

OS version Shielded VM support Confidential VM support
Debian 11 *
Debian 10
Debian 9
Debian 8

*Debian 11: T2A doesn't currently support Secure boot. If you are using a Debian OS you must set the Secure boot flag to
--no-shielded-secure-boot. See Troubleshooting Arm VMs.

User space features

Note: Suspend and resume is supported for Debian 8, 9, and 11, but some configuration is required for Debian 8 and 9.
OS version Guest environment installed gcloud CLI installed OS Login supported Suspend and resume supported
Debian 11
Debian 10
Debian 9
Debian 8

Supported interfaces

OS version SCSI NVMe Google Virtual NIC (gVNIC) Multiple network interfaces
Debian 11
Debian 10
Debian 9 *
Debian 8 *

*Has support for NVMe but does not include all optimizations for NVMe.

Compute optimization

OS version GPU supported
Debian 11
Debian 10
Debian 9
Debian 8

VM Manager

OS version OS Config agent installed OS inventory supported OS configuration supported OS patch supported
Debian 11
Debian 10
Debian 9
Debian 8

Import

For operating system support information on migrating VMs using Migrate to Virtual Machines, see supported operating systems.

OS version Import disk Import virtual appliance Import machine image
Debian 11
Debian 10
Debian 9
Debian 8

License

OS version License type License
Debian 11 Free https://www.googleapis.com/compute/v1/projects/debian-cloud/global/licenses/debian-11-bullseye
Debian 10 Free https://www.googleapis.com/compute/v1/projects/debian-cloud/global/licenses/debian-10-buster
Debian 9 EOL https://www.googleapis.com/compute/v1/projects/debian-cloud/global/licenses/debian-9-stretch
Debian 8 EOL EOL

Fedora CoreOS

Fedora CoreOS is a distribution that provides features that are needed to run modern infrastructure stacks. Fedora CoreOS uses Linux containers to manage your services at a higher level of abstraction. Google Cloud provides Fedora CoreOS images built and supported by Fedora. There is no license fee for using Fedora CoreOS with Compute Engine.

Automatic updates

By default, this operating system is configured to install security updates by using the FedoraCoreOS automatic update tool. The updates have the following behaviors:

  • These automatic updates from the operating system vendor do not upgrade instances between major versions of the operating system.
  • Some updates require reboots to take effect. These reboots do not happen automatically.
Image configuration

Network configuration

  • VMs based on Google-provided Linux images get their interface MTU from the attached VPC MTU. VMs based on custom images or older Linux images may have their MTU's hardcoded. In these cases, you have to change the setting yourself if you want to connect the interface to a network with an MTU other than 1460. For more information about network and interface MTU, see the maximum transmission unit overview.

General information

OS version Image project Image family Machine series Lifecycle stage EOL and image deprecation date
Fedora CoreOS Stable fedora-coreos-cloud fedora-coreos-stable All except T2A, M3 GA TBD
Fedora CoreOS Testing fedora-coreos-cloud fedora-coreos-testing All except T2A, M3 GA TBD
Fedora CoreOS Next fedora-coreos-cloud fedora-coreos-next All except T2A, M3 GA TBD

Security features

OS version Shielded VM support Confidential VM support
Fedora CoreOS Stable
Fedora CoreOS Testing
Fedora CoreOS Next

User space features

OS version Guest environment installed gcloud CLI installed OS Login supported Suspend and resume supported
Fedora CoreOS Stable
Fedora CoreOS Testing
Fedora CoreOS Next

Supported interfaces

OS version SCSI NVMe Google Virtual NIC (gVNIC) Multiple network interfaces
Fedora CoreOS Stable
Fedora CoreOS Testing
Fedora CoreOS Next

Compute optimization

OS version GPU supported
Fedora CoreOS Stable
Fedora CoreOS Testing
Fedora CoreOS Next

VM Manager

OS version OS Config agent installed OS inventory supported OS configuration supported OS patch supported
Fedora CoreOS Stable
Fedora CoreOS Testing
Fedora CoreOS Next

Import

For operating system support information on migrating VMs using Migrate to Virtual Machines, see supported operating systems.

OS version Import disk Import virtual appliance Import machine image
Fedora CoreOS Stable
Fedora CoreOS Testing
Fedora CoreOS Next

License

OS version License type License
Fedora CoreOS Stable Free https://www.googleapis.com/compute/v1/projects/fedora-coreos-cloud/global/licenses/fedora-coreos-stable
Fedora CoreOS Testing Free https://www.googleapis.com/compute/v1/projects/fedora-coreos-cloud/global/licenses/fedora-coreos-testing
Fedora CoreOS Next Free https://www.googleapis.com/compute/v1/projects/fedora-coreos-cloud/global/licenses/fedora-coreos-next

Red Hat Enterprise Linux (RHEL)

Red Hat Enterprise Linux (RHEL) is an open-source Linux operating system that provides both server and desktop operating systems. Google Cloud builds and supports the RHEL OS images available for Compute Engine.

RHEL images are premium resources that incur additional fees to use. If you want to use an existing RHEL subscription, you can use the Red Hat Cloud Access feature.

To view a list of frequently asked questions when running RHEL on Compute Engine, see Red Hat Enterprise Linux FAQ.

Automatic updates

By default, this operating system is configured to install security updates by using the RHEL yum-cron (RHEL 7) or dnf automatic (RHEL 8+) tool. The updates have the following behaviors:

  • These automatic updates from the operating system vendor do not upgrade instances between major versions of the operating system.
  • Starting with RHEL 7, the operating system is also configured to only apply updates marked by the vendor as security updates.
  • Some updates require reboots to take effect. These reboots do not happen automatically.
Image configuration

The RHEL image build configuration is available in an open source GitHub repository.

RHEL images are always built with the latest RHEL packages, which reflect the most recent point release. Currently, you cannot pin a VM to a point release.

RHEL for SAP images are tagged to the specific point release they are built for as supported by Red Hat.

The RHEL images that are provided by Compute Engine, have the following differences in configuration from standard RHEL images:

Account configuration

  • There are no local users configured with passwords.

Bootloader configuration

  • To force faster boot times, the boot timeout in the grub configuration is set to 0.
  • The I/O scheduler is set to noop.

Network configuration

  • IPv6 is enabled.
  • The DHCP client is set to retry every 10 seconds instead of every 5 minutes. The client is also set to persistent mode instead of oneshot.
  • The SSH server configuration is set up as follows:
    • Password authentication is disabled.
    • To prevent SSH disconnections, ServerAliveInterval and ClientAliveInterval are set to 7 minutes.
    • Root login is disabled.
  • /etc/udev/rules.d/75-persistent-net-generator.rules is disabled.
  • To prevent MAC addresses from persisting, /etc/udev/rules.d/70-persistent-net.rules is removed.
  • By default, all traffic is allowed through the guest firewall because the VPC firewall rules overrides the guest firewall rules. The guest firewall rules remains enabled and can be configured through normal RHEL methods.
  • VMs based on Google-provided Linux images get their interface MTU from the attached VPC MTU. VMs based on custom images or older Linux images may have their MTU's hardcoded. In these cases, you have to change the setting yourself if you want to connect the interface to a network with an MTU other than 1460. For more information about network and interface MTU, see the maximum transmission unit overview.

Package and repository configuration

  • Google Cloud repositories are enabled to install packages for the Compute Engine guest environment and the Google Cloud CLI.
  • For RHEL 7, EPEL is enabled.
  • RHEL for SAP yum vars are set to peg the client to the supported RHEL for SAP point release.
  • RHEL content comes from the Compute Engine Red Hat Update Infrastructure (RHUI) servers.
  • The Google RHUI client package, which contains the configuration needed to access RHEL content, is installed.
  • The Red Hat subscription-manager package is removed because it is not used for pay as you go images.
  • Automatic updates are enabled as follows:
    • For RHEL 7, by using yum-cron.
    • For RHEL 8+, by using dnf automatic.
    • For all versions, the update_cmd property is set to security.
    • IPv6 endpoints are disabled in the yum or dnf config files.

Storage configuration

  • By default, images are 20 GB. This is the recommended minimum size.
  • The partition table is GPT, and there is an EFI partition to support booting on UEFI.
  • The NTP server is set to use the Compute Engine metadata server.

Time configuration

  • The NTP server is set to use the Compute Engine metadata server.

General information

OS version Image project x86 image family Arm image family Machine series Lifecycle stage EOL and image deprecation date
RHEL 9 rhel-cloud rhel-9 rhel-9-arm64 All GA May 2032
RHEL 8 rhel-cloud rhel-8 N/A All except T2A GA May 2029
RHEL 7 rhel-cloud rhel-7 N/A All except T2A GA June 2024
RHEL 6 N/A N/A N/A N/A EOS*
ELS		 November 30, 2020
June 30, 2024
RHEL 8.6 for SAP rhel-sap-cloud rhel-8-6-sap-ha N/A All except T2A GA May 2026
RHEL 8.4 for SAP rhel-sap-cloud rhel-8-4-sap-ha N/A All except T2A GA May 2025
RHEL 8.2 for SAP rhel-sap-cloud rhel-8-2-sap-ha N/A All except T2A GA April 2024
RHEL 8.1 for SAP rhel-sap-cloud rhel-8-1-sap-ha N/A All except T2A, M3 GA November 2023
RHEL 7.9 for SAP rhel-sap-cloud rhel-7-9-sap-ha N/A All except T2A GA June 2024
RHEL 7.7 for SAP rhel-sap-cloud rhel-7-7-sap-ha N/A All except T2A, M3 GA August 2023
RHEL 7.6 for SAP N/A N/A N/A N/A EOS* October 2022
RHEL 7.4 for SAP N/A N/A N/A N/A EOS* August 2021

*EOS: end of support

ELS: To use this OS image, you must have a subscription or an Extended Life Cycle Support (ELS) Add-On. You can append the ELS Add-On to your RHEL 6 VMs as described in Append RHEL ELS licenses.

Security features

OS version Shielded VM support Confidential VM support
RHEL 9
RHEL 8
RHEL 7
RHEL 6
RHEL 8.6 for SAP
RHEL 8.4 for SAP
RHEL 8.2 for SAP
RHEL 8.1 for SAP
RHEL 7.9 for SAP
RHEL 7.7 for SAP
RHEL 7.6 for SAP
RHEL 7.4 for SAP

User space features

OS version Guest environment installed gcloud CLI installed OS Login supported Suspend and resume supported
RHEL 9
RHEL 8
RHEL 7
RHEL 6
RHEL 8.6 for SAP
RHEL 8.4 for SAP
RHEL 8.2 for SAP
RHEL 8.1 for SAP
RHEL 7.9 for SAP
RHEL 7.7 for SAP
RHEL 7.6 for SAP
RHEL 7.4 for SAP

Supported interfaces

OS version SCSI NVMe Google Virtual NIC (gVNIC) Multiple network interfaces
RHEL 9
RHEL 8
RHEL 7
RHEL 6 *
RHEL 8.6 for SAP
RHEL 8.4 for SAP
RHEL 8.2 for SAP
RHEL 8.1 for SAP
RHEL 7.9 for SAP
RHEL 7.7 for SAP
RHEL 7.6 for SAP
RHEL 7.4 for SAP

*Has support for NVMe but does not include all optimizations for NVMe.

Compute optimization

OS version GPU supported
RHEL 9
RHEL 8
RHEL 7
RHEL 6
RHEL 8.6 for SAP
RHEL 8.4 for SAP
RHEL 8.2 for SAP
RHEL 8.1 for SAP
RHEL 7.9 for SAP
RHEL 7.7 for SAP
RHEL 7.6 for SAP
RHEL 7.4 for SAP

VM Manager

OS version OS Config agent installed OS inventory supported OS configuration supported OS patch supported
RHEL 9
RHEL 8
RHEL 7
RHEL 6
RHEL 8.6 for SAP
RHEL 8.4 for SAP
RHEL 8.2 for SAP
RHEL 8.1 for SAP
RHEL 7.9 for SAP
RHEL 7.7 for SAP
RHEL 7.6 for SAP
RHEL 7.4 for SAP

Import

For operating system support information on migrating VMs using Migrate to Virtual Machines, see supported operating systems.

OS version Import disk Import virtual appliance Import machine image
RHEL 9
RHEL 8
RHEL 7
RHEL 6
RHEL 8.6 for SAP
RHEL 8.4 for SAP
RHEL 8.2 for SAP
RHEL 8.1 for SAP
RHEL 7.9 for SAP
RHEL 7.7 for SAP
RHEL 7.6 for SAP
RHEL 7.4 for SAP

License

OS version License type License
RHEL 9 On-demand https://www.googleapis.com/compute/v1/projects/rhel-cloud/global/licenses/rhel-9-server
RHEL 8 On-demand (Default) https://www.googleapis.com/compute/v1/projects/rhel-cloud/global/licenses/rhel-8-server
BYOS https://www.googleapis.com/compute/v1/projects/rhel-cloud/global/licenses/rhel-8-byos
RHEL 7 On-demand (Default) https://www.googleapis.com/compute/v1/projects/rhel-cloud/global/licenses/rhel-7-server
BYOS https://www.googleapis.com/compute/v1/projects/rhel-cloud/global/licenses/rhel-7-byos
RHEL 6 BYOS https://www.googleapis.com/compute/v1/projects/rhel-cloud/global/licenses/rhel-6-byos
ELS https://www.googleapis.com/compute/v1/projects/rhel-cloud/global/licenses/rhel-6-els
RHEL 8.6 for SAP On-demand https://www.googleapis.com/compute/v1/projects/rhel-sap-cloud/global/licenses/rhel-8-sap
RHEL 8.4 for SAP On-demand https://www.googleapis.com/compute/v1/projects/rhel-sap-cloud/global/licenses/rhel-8-sap
BYOS N/A
RHEL 8.2 for SAP On-demand https://www.googleapis.com/compute/v1/projects/rhel-sap-cloud/global/licenses/rhel-8-sap
BYOS N/A
RHEL 8.1 for SAP On-demand https://www.googleapis.com/compute/v1/projects/rhel-sap-cloud/global/licenses/rhel-8-sap
BYOS N/A
RHEL 7.9 for SAP On-demand https://www.googleapis.com/compute/v1/projects/rhel-sap-cloud/global/licenses/rhel-7-sap
BYOS N/A
RHEL 7.7 for SAP On-demand https://www.googleapis.com/compute/v1/projects/rhel-sap-cloud/global/licenses/rhel-7-sap
BYOS N/A
RHEL 7.6 for SAP BYOS N/A
RHEL 7.4 for SAP BYOS N/A

ELS: To use this OS image, you must have a subscription or an Extended Life Cycle Support (ELS) Add-On. You can append the ELS Add-On to your RHEL 6 VMs as described in Append RHEL ELS licenses.

Rocky Linux

Rocky Linux is a free, open, community enterprise operating system designed to be 100% bug-for-bug compatible with Red Hat Enterprise Linux. Google Cloud builds and supports the Rocky Linux images available for Compute Engine. There is no license fee for using Rocky Linux with Compute Engine.

The following two versions of Rocky Linux operating systems are available on Compute Engine:

  • A fully open source version
  • A version optimized for Google Cloud: this version has the suffix -optimized-gcp and is pre-configured to use the latest version of the Google virtual network interface (gVNIC).
Automatic updates

By default, this operating system is configured to install security updates by using the dnf-automatic tool. The updates have the following behaviors:

  • dnf-automatic does not upgrade VMs between major versions of the operating system.
  • The upgrade tool is configured to only apply updates marked by the vendor as security updates.
  • Some updates require reboots to take effect. These reboots do not happen automatically.
Image configuration

The Rocky Linux images that are provided by Compute Engine, have the following differences in configuration from standard Rocky Linux images:

Account configuration

  • There are no local users configured with passwords.

Bootloader configuration

  • To force faster boot times, the boot timeout in the grub configuration is set to 0.

Network configuration

  • IPv6 is enabled.
  • The DHCP client is set to retry every 10 seconds instead of every 5 minutes. The client is also set to persistent mode instead of oneshot.
  • The SSH server configuration is set up as follows:
    • Password authentication is disabled.
    • To prevent SSH disconnections, ServerAliveIntervaland ClientAliveInterval are set to 7 minutes.
    • Root login is disabled.
  • /etc/udev/rules.d/75-persistent-net-generator.rules is disabled.
  • To prevent MAC addresses from persisting, /etc/udev/rules.d/70-persistent-net.rules is removed.
  • By default, all traffic is allowed through the guest firewall because the VPC firewall rules overrides the guest firewall rules. The guest firewall rules remains enabled and can be configured through normal Rocky Linux methods.
  • VMs based on Google-provided Linux images get their interface MTU from the attached VPC MTU. VMs based on custom images or older Linux images may have their MTU's hardcoded. In these cases, you have to change the setting yourself if you want to connect the interface to a network with an MTU other than 1460. For more information about network and interface MTU, see the maximum transmission unit overview.

Package system and repository configuration

  • Google Cloud repositories are enabled to install packages for the Compute Engine guest environment and the Google Cloud CLI.
  • Repositories are set to use the Rocky Linux default mirror network.
    • The PowerTools repository is enabled.
  • Automatic updates are configured as follows:
    • Automatic updates are enabled by using dnf automatic.
    • For all versions, theupdate_cmd property is set to security.However, by default Rocky Linux does not offer security tagged repositories.
    • IPv6 endpoints are disabled in the dnf config file.

Storage configuration

  • By default, images are 20 GB.
  • The partition table is GPT, and there is an EFI partition to support booting on UEFI.
  • The floppy module is disabled because there is no floppy disk controller on Compute Engine .

Time configuration

  • The NTP server is set to use the Compute Engine metadata server.

General information

OS version Image project x86 image family Arm image family* Machine series Lifecycle stage EOL and image deprecation date
Rocky Linux 9 optimized for Google Cloud rocky-linux-cloud rocky-linux-9-optimized-gcp rocky-linux-9-optimized-gcp-arm64 All GA May 2032
Rocky Linux 9 rocky-linux-cloud rocky-linux-9 rocky-linux-9-arm64 All GA May 2032
Rocky Linux 8 optimized for Google Cloud rocky-linux-cloud rocky-linux-8-optimized-gcp rocky-linux-8-optimized-gcp-arm64 All GA May 2029
Rocky Linux 8 rocky-linux-cloud rocky-linux-8 N/A All except T2A GA May 2029

*EOS: end of support

ELS: To use this OS image, you must have a subscription or an Extended Life Cycle Support (ELS) Add-On. You can append the ELS Add-On to your RHEL 6 VMs as described in Append RHEL ELS licenses.

Security features

OS version Shielded VM support Confidential VM support
Rocky Linux 9 optimized for Google Cloud
Rocky Linux 9
Rocky Linux 8 optimized for Google Cloud
Rocky Linux 8

User space features

OS version Guest environment installed gcloud CLI installed OS Login supported Suspend and resume supported
Rocky Linux 9 optimized for Google Cloud
Rocky Linux 9
Rocky Linux 8 optimized for Google Cloud
Rocky Linux 8

Supported interfaces

OS version SCSI NVMe Google Virtual NIC (gVNIC) Multiple network interfaces
Rocky Linux 9 optimized for Google Cloud
Rocky Linux 9
Rocky Linux 8 optimized for Google Cloud
Rocky Linux 8

Compute optimization

OS version GPU supported
Rocky Linux 9 optimized for Google Cloud
Rocky Linux 9
Rocky Linux 8 optimized for Google Cloud
Rocky Linux 8

VM Manager

OS version OS Config agent installed OS inventory supported OS configuration supported OS patch supported*
Rocky Linux 9 optimized for Google Cloud
Rocky Linux 9
Rocky Linux 8 optimized for Google Cloud
Rocky Linux 8

*Patch compliance reporting: For all supported Rocky Linux operating systems, you can run patch jobs and create patch deployments. However, patch compliance reporting is not supported and these VMs are displayed in the No data category on the OS patch management dashboard.

Import

For operating system support information on migrating VMs using Migrate to Virtual Machines, see supported operating systems.

OS version Import disk Import virtual appliance Import machine image
Rocky Linux 9 optimized for Google Cloud
Rocky Linux 9
Rocky Linux 8 optimized for Google Cloud
Rocky Linux 8

License

OS version License type License
Rocky Linux 9 optimized for Google Cloud Free https://www.googleapis.com/compute/v1/projects/rocky-linux-cloud/global/licenses/rocky-linux-9-optimized-gcp
Rocky Linux 9 Free https://www.googleapis.com/compute/v1/projects/rocky-linux-cloud/global/licenses/rocky-linux-9
Rocky Linux 8 optimized for Google Cloud Free https://www.googleapis.com/compute/v1/projects/rocky-linux-cloud/global/licenses/rocky-linux-8-optimized-gcp
Rocky Linux 8 Free https://www.googleapis.com/compute/v1/projects/rocky-linux-cloud/global/licenses/rocky-linux-8

SQL Server

Microsoft SQL Server images are similar to the standard Windows Server operating system images, but they include Microsoft SQL Server preinstalled.

Microsoft SQL Server images are not supported for VMs created on the T2A machine series.

Automatic updates

By default, this operating system is configured to "Auto download and schedule the install" for Microsoft updates. To configure Windows Server automatic updates, see Configure Automatic Updates.

Image configuration

Version support

To use Microsoft SQL Server on a Linux VM with an on-demand / pay-as-you-go (PAYG) license, see Using Microsoft SQL Server on Linux.

Version Image project Image family Lifecycle stage Enterprise Standard Web Express
Microsoft SQL Server 2022 windows-sql-cloud sql-web-2022-win-2022
sql-web-2022-win-2019
sql-std-2022-win-2022
sql-std-2022-win-2019
sql-ent-2022-win-2022
sql-ent-2022-win-2019 		GA
Microsoft SQL Server 2019 windows-sql-cloud sql-web-2019-win-2022
sql-web-2019-win-2019
sql-std-2019-win-2022
sql-std-2019-win-2019
sql-ent-2019-win-2022
sql-ent-2019-win-2019 		GA
Microsoft SQL Server 2017 windows-sql-cloud sql-web-2017-win-2022
sql-web-2017-win-2019
sql-web-2017-win-2016
sql-std-2017-win-2022
sql-std-2017-win-2019
sql-std-2017-win-2016
sql-exp-2017-win-2019
sql-exp-2017-win-2016
sql-ent-2017-win-2022
sql-ent-2017-win-2019
sql-ent-2017-win-2016
sql-exp-2017-win-2012-r2 		GA
Microsoft SQL Server 2016 windows-sql-cloud sql-web-2016-win-2019
sql-web-2016-win-2016
sql-web-2016-win-2012-r2
sql-std-2016-win-2019
sql-std-2016-win-2016
sql-std-2016-win-2012-r2
sql-ent-2016-win-2019
sql-ent-2016-win-2016
sql-ent-2016-win-2012-r2 		GA
Microsoft SQL Server 2014 windows-sql-cloud sql-web-2014-win-2012-r2
sql-std-2014-win-2012-r2
sql-ent-2014-win-2016
sql-ent-2014-win-2012-r2 		GA