如果您的 Windows 執行個體沒有外部 IP 位址,您也必須啟用私人 Google 存取權,以讓只有內部 IP 位址的執行個體能將流量傳送至外部 IP 位址。
程式碼範例
Go
在試用這個範例之前,請先按照Go「使用用戶端程式庫的 Compute Engine 快速入門」中的操作說明進行設定。詳情請參閱 Compute Engine Go API 參考說明文件。
如要向 Compute Engine 進行驗證,請設定應用程式預設憑證。 詳情請參閱「為本機開發環境設定驗證」。
import (
"context"
"fmt"
"io"
compute "cloud.google.com/go/compute/apiv1"
computepb "cloud.google.com/go/compute/apiv1/computepb"
"google.golang.org/protobuf/proto"
)
// createRouteToWindowsActivationHost creates a new route to
// kms.windows.googlecloud.com (35.190.247.13) for Windows activation.
func createRouteToWindowsActivationHost(
w io.Writer,
projectID, routeName, networkName string,
) error {
// projectID := "your_project_id"
// routeName := "your_route_name"
// networkName := "global/networks/default"
ctx := context.Background()
routesClient, err := compute.NewRoutesRESTClient(ctx)
if err != nil {
return fmt.Errorf("NewRoutesRESTClient: %w", err)
}
defer routesClient.Close()
// If you have Windows instances without external IP addresses,
// you must also enable Private Google Access so that instances
// with only internal IP addresses can send traffic to the external
// IP address for kms.windows.googlecloud.com.
// More infromation: https://cloud.google.com/vpc/docs/configure-private-google-access#enabling
req := &computepb.InsertRouteRequest{
Project: projectID,
RouteResource: &computepb.Route{
Name: proto.String(routeName),
DestRange: proto.String("35.190.247.13/32"),
Network: proto.String(networkName),
NextHopGateway: proto.String(
fmt.Sprintf("projects/%s/global/gateways/default-internet-gateway", projectID),
),
},
}
op, err := routesClient.Insert(ctx, req)
if err != nil {
return fmt.Errorf("unable to create route: %w", err)
}
if err = op.Wait(ctx); err != nil {
return fmt.Errorf("unable to wait for the operation: %w", err)
}
fmt.Fprintf(w, "Route created\n")
return nil
}
Java
在試用這個範例之前,請先按照Java「使用用戶端程式庫的 Compute Engine 快速入門」中的操作說明進行設定。詳情請參閱 Compute Engine Java API 參考說明文件。
如要向 Compute Engine 進行驗證,請設定應用程式預設憑證。 詳情請參閱「為本機開發環境設定驗證」。
import com.google.cloud.compute.v1.InsertRouteRequest;
import com.google.cloud.compute.v1.Operation;
import com.google.cloud.compute.v1.Route;
import com.google.cloud.compute.v1.RoutesClient;
import java.io.IOException;
import java.util.concurrent.ExecutionException;
import java.util.concurrent.TimeUnit;
import java.util.concurrent.TimeoutException;
public class CreateRouteToWindowsActivationHost {
public static void main(String[] args)
throws IOException, ExecutionException, InterruptedException, TimeoutException {
// TODO(developer): Replace these variables before running the sample.
// projectId - ID or number of the project you want to use.
String projectId = "your-google-cloud-project-id";
// routeName - Name of the route you want to create.
String routeName = "route-name";
// networkName - Name of the network you want the new instance to use.
// * For example: "global/networks/default" represents the network
// * named "default", which is created automatically for each project.
String networkName = "global/networks/default";
createRouteToWindowsActivationHost(projectId, routeName, networkName);
}
// Creates a new route to kms.windows.googlecloud.com (35.190.247.13) for Windows activation.
public static void createRouteToWindowsActivationHost(String projectId, String routeName,
String networkName)
throws IOException, ExecutionException, InterruptedException, TimeoutException {
// Instantiates a client.
try (RoutesClient routesClient = RoutesClient.create()) {
// If you have Windows instances without external IP addresses,
// you must also enable Private Google Access so that instances
// with only internal IP addresses can send traffic to the external
// IP address for kms.windows.googlecloud.com.
// More information: https://cloud.google.com/vpc/docs/configure-private-google-access#enabling
Route route = Route.newBuilder()
.setName(routeName)
.setDestRange("35.190.247.13/32")
.setNetwork(networkName)
.setNextHopGateway(
String.format("projects/%s/global/gateways/default-internet-gateway", projectId))
.build();
InsertRouteRequest request = InsertRouteRequest.newBuilder()
.setProject(projectId)
.setRouteResource(route)
.build();
// Wait for the operation to complete.
Operation operation = routesClient.insertAsync(request).get(3, TimeUnit.MINUTES);
if (operation.hasError()) {
System.out.printf("Error in creating route %s", operation.getError());
return;
}
System.out.printf("Route created %s", routeName);
}
}
}Python
在試用這個範例之前,請先按照Python「使用用戶端程式庫的 Compute Engine 快速入門」中的操作說明進行設定。詳情請參閱 Compute Engine Python API 參考說明文件。
如要向 Compute Engine 進行驗證,請設定應用程式預設憑證。 詳情請參閱「為本機開發環境設定驗證」。
from __future__ import annotations
import sys
from typing import Any
from google.api_core.extended_operation import ExtendedOperation
from google.cloud import compute_v1
def wait_for_extended_operation(
operation: ExtendedOperation, verbose_name: str = "operation", timeout: int = 300
) -> Any:
"""
Waits for the extended (long-running) operation to complete.
If the operation is successful, it will return its result.
If the operation ends with an error, an exception will be raised.
If there were any warnings during the execution of the operation
they will be printed to sys.stderr.
Args:
operation: a long-running operation you want to wait on.
verbose_name: (optional) a more verbose name of the operation,
used only during error and warning reporting.
timeout: how long (in seconds) to wait for operation to finish.
If None, wait indefinitely.
Returns:
Whatever the operation.result() returns.
Raises:
This method will raise the exception received from `operation.exception()`
or RuntimeError if there is no exception set, but there is an `error_code`
set for the `operation`.
In case of an operation taking longer than `timeout` seconds to complete,
a `concurrent.futures.TimeoutError` will be raised.
"""
result = operation.result(timeout=timeout)
if operation.error_code:
print(
f"Error during {verbose_name}: [Code: {operation.error_code}]: {operation.error_message}",
file=sys.stderr,
flush=True,
)
print(f"Operation ID: {operation.name}", file=sys.stderr, flush=True)
raise operation.exception() or RuntimeError(operation.error_message)
if operation.warnings:
print(f"Warnings during {verbose_name}:\n", file=sys.stderr, flush=True)
for warning in operation.warnings:
print(f" - {warning.code}: {warning.message}", file=sys.stderr, flush=True)
return result
def create_route(
project_id: str,
network: str,
route_name: str,
destination_range: str,
*,
next_hop_gateway: str | None = None,
next_hop_ip: str | None = None,
next_hop_instance: str | None = None,
next_hop_vpn_tunnel: str | None = None,
next_hop_ilb: str | None = None,
) -> compute_v1.Route:
"""
Create a new route in selected network by providing a destination and next hop name.
Note: The set of {next_hop_gateway, next_hop_ip, next_hop_instance, next_hop_vpn_tunnel,
next_hop_ilb} is exclusive, you and only specify one of those parameters.
Args:
project_id: project ID or project number of the Cloud project you want to use.
network: name of the network the route will be created in. Available name formats:
* https://www.googleapis.com/compute/v1/projects/{project_id}/global/networks/{network}
* projects/{project_id}/global/networks/{network}
* global/networks/{network}
route_name: name of the new route.
destination_range: range of destination IPs this route should be applied to. E.g. 10.0.0.0/16.
next_hop_gateway: name of the gateway the traffic should be directed to.
next_hop_ip: IP address the traffic should be directed to.
next_hop_instance: name of the instance the traffic should be directed to. Name format:
"projects/{project}/zones/{zone}/instances/{instance_name}"
next_hop_vpn_tunnel: name of the VPN tunnel the traffic should be directed to. Name format:
"projects/{project}/regions/{region}/vpnTunnels/{vpn_tunnel_name}"
next_hop_ilb: name of a forwarding rule of the Internal Load Balancer the traffic
should be directed to. Name format:
"projects/{project}/regions/{region}/forwardingRules/{forwarding_rule_region}"
Returns:
A new compute_v1.Route object.
"""
excl_args = {
next_hop_instance,
next_hop_ilb,
next_hop_vpn_tunnel,
next_hop_gateway,
next_hop_ip,
}
args_set = sum(1 if arg is not None else 0 for arg in excl_args)
if args_set != 1:
raise RuntimeError("You must specify exactly one next_hop_* parameter.")
route = compute_v1.Route()
route.name = route_name
route.network = network
route.dest_range = destination_range
if next_hop_gateway:
route.next_hop_gateway = next_hop_gateway
elif next_hop_ip:
route.next_hop_ip = next_hop_ip
elif next_hop_instance:
route.next_hop_instance = next_hop_instance
elif next_hop_vpn_tunnel:
route.next_hop_vpn_tunnel = next_hop_vpn_tunnel
elif next_hop_ilb:
route.next_hop_ilb = next_hop_ilb
route_client = compute_v1.RoutesClient()
operation = route_client.insert(project=project_id, route_resource=route)
wait_for_extended_operation(operation, "route creation")
return route_client.get(project=project_id, route=route_name)
def create_route_to_windows_activation_host(
project_id: str, network: str, route_name: str
) -> compute_v1.Route:
"""
If you have Windows instances without external IP addresses,
you must also enable Private Google Access so that instances
with only internal IP addresses can send traffic to the external
IP address for kms.windows.googlecloud.com.
More infromation: https://cloud.google.com/vpc/docs/configure-private-google-access#enabling
Args:
project_id: project ID or project number of the Cloud project you want to use.
network: name of the network the route will be created in. Available name formats:
* https://www.googleapis.com/compute/v1/projects/{project_id}/global/networks/{network}
* projects/{project_id}/global/networks/{network}
* global/networks/{network}
route_name: name of the new route.
Returns:
A new compute_v1.Route object.
"""
return create_route(
project_id=project_id,
network=network,
route_name=route_name,
destination_range="35.190.247.13/32",
next_hop_gateway=f"projects/{project_id}/global/gateways/default-internet-gateway",
)
後續步驟
如要搜尋及篩選其他 Google Cloud 產品的程式碼範例,請參閱Google Cloud 範例瀏覽器。