Establecer una conexión de acceso privado a servicios
Organízate con las colecciones
Guarda y clasifica el contenido según tus preferencias.
En esta página se explica cómo establecer una conexión de acceso a servicios privados para una red. Para crear una instancia de Redis con el modo de conexión de acceso a servicios privados designado para una red, primero debes establecer una conexión de acceso a servicios privados para esa red. Para obtener más información, consulta la sección Redes.
Instrucciones de configuración del acceso privado a servicios
Sigue estos pasos para configurar una conexión de acceso de servicios privados para tu red:
En el comando anterior, la longitud del prefijo CIDR es 24. Este valor debe ser 24 o menos. Por ejemplo, 23 es un prefijo aceptable. Ten en cuenta que los prefijos CIDR más pequeños crean intervalos de direcciones IP más grandes.
Haz clic en el nombre de tu red. Normalmente se llama "default".
Haz clic en Acceso a servicios privados.
Haz clic en Asignar intervalos de direcciones IP para los servicios.
Haz clic en Asignar intervalo de IPs.
Asigna un nombre al intervalo, como "private-services-access-range".
Introduce una descripción para el intervalo, como "Intervalo de direcciones IP que se va a usar para la conexión de acceso privado a los servicios".
Selecciona Automático si quieres que Google elija el intervalo.
Introduce un prefijo CIDR de /24 o menos. Por ejemplo, /23 es un prefijo aceptable. Ten en cuenta que los prefijos CIDR más pequeños crean rangos de direcciones IP más grandes.
Selecciona Personalizado si quieres elegir el intervalo.
Introduce el intervalo que quieras con un prefijo CIDR de /24 o menos.
Haz clic en Asignar.
Haz clic en Conexiones privadas a los servicios.
Haz clic en el botón Crear conexión.
En el menú desplegable Asignación asignada, selecciona el intervalo que acabas de crear en los pasos anteriores.
Haz clic en Aceptar.
Haz clic en Conectar.
Actualiza la página para ver la nueva conexión en la pestaña Conexiones privadas a servicios.
En el panel Conexión de servicio privado, haz clic en el botón Configurar conexión. Al hacerlo, se abrirá un panel deslizable para configurar el acceso a servicios privados.
Asigna un intervalo de direcciones IP con uno de los siguientes métodos:
Selecciona un intervalo de direcciones IP.
Asigna un nuevo intervalo de IPs.
Introduzca un nombre para el intervalo.
Introduce un intervalo CIDR válido con un tamaño de bloque de /24. Por ejemplo:
10.0.0.0/24.
Usar un intervalo de direcciones IP asignado automáticamente.
[[["Es fácil de entender","easyToUnderstand","thumb-up"],["Me ofreció una solución al problema","solvedMyProblem","thumb-up"],["Otro","otherUp","thumb-up"]],[["Es difícil de entender","hardToUnderstand","thumb-down"],["La información o el código de muestra no son correctos","incorrectInformationOrSampleCode","thumb-down"],["Me faltan las muestras o la información que necesito","missingTheInformationSamplesINeed","thumb-down"],["Problema de traducción","translationIssue","thumb-down"],["Otro","otherDown","thumb-down"]],["Última actualización: 2025-09-10 (UTC)."],[],[],null,["# Establish a private services access connection\n\nThis page explains how to establish a [private services access](/vpc/docs/private-services-access) connection for a network. Establishing a private services access\nconnection for a network is a prerequisite for creating a Redis instance with\nthe private services access connection mode designated for that network. For\nmore details, see [Networking](/memorystore/docs/redis/networking).\n| **Note:** We recommend that your organization's networking team / networking admin manage these steps for setting up a private services access connection. \n|\n| If you are an application developer, usually your networking team should manage establishing a private services access connection. For more details, see [Communicating networking requirements](/memorystore/docs/redis/networking#communicating_networking_requirements).\n\nPrivate services access setup instructions\n------------------------------------------\n\nFollow these steps to setup a private services access connection for your\nnetwork: \n\n### gcloud\n\n1. Enable the Service Networking API:\n\n [Enable the Service Networking API](https://console.cloud.google.com/apis/library/servicenetworking.googleapis.com)\n\n If you are using Shared VPC, enable the API in both the Service Project\n and the Host Project.\n2. [Check to see](/memorystore/docs/redis/verifying-connection) if\n a private service access connection has been established for your network.\n\n - If the connection has already been established, then see [Creating a Redis instance that uses a centralized IP address range](/memorystore/docs/redis/create-manage-instances#creating_a_redis_instance_that_uses_a_centralized_ip_address_range) for instructions on how to create a Redis instance.\n3. Open a terminal window.\n\n4. Set your default project by running the following command, replacing\n \u003cvar translate=\"no\"\u003evariables\u003c/var\u003e with appropriate values:\n\n ```\n gcloud config set core/project project-id\n ```\n5. Reserve an IP address range in your network by running the following command:\n\n ```\n gcloud compute addresses create reserved-range-name --global --prefix-length=24 --description=description --network=vpc-network --purpose=vpc_peering\n ```\n - In the command above, the CIDR prefix length is set to `24`. This value\n must be `24` or less. For example, `23` is an acceptable prefix. Note\n that smaller CIDR prefixes create larger IP address ranges.\n\n - For information on managing private services access, see [Configuring private services access](/vpc/docs/configure-private-services-access).\n\n6. Create a [private connection](/vpc/docs/configure-private-services-access#creating-connection)\n between your network and the private services access network by running the\n following command:\n\n ```\n gcloud services vpc-peerings connect --service=servicenetworking.googleapis.com --ranges=reserved-range-name --network=vpc-network --project=project-id\n ```\n\n### Console: VPC network\n\n1. Enable the Service Networking API:\n\n [Enable the Service Networking API](https://console.cloud.google.com/apis/library/servicenetworking.googleapis.com)\n\n If you are using Shared VPC, enable the API in both the Service Project\n and the Host Project.\n2. [Check to see](/memorystore/docs/redis/verifying-connection) if\n a private service access connection has been established for your network.\n\n - If the connection has already been established, then see [Creating a Redis instance that uses a centralized IP address range](/memorystore/docs/redis/create-manage-instances#creating_a_redis_instance_that_uses_a_centralized_ip_address_range) for instructions on how to create a Redis instance.\n3. Go to the VPC Networks page in the Google Cloud console.\n\n [Go to the VPC networks page](https://console.cloud.google.com/networking/networks/list?) \n\n4. Click the name of your network. Usually it is named \"default\".\n\n5. Click **Private services access**.\n\n6. Click **Allocate IP ranges for services**.\n\n7. Click **Allocate IP range**.\n\n - Enter a name for your range, such as \"private-services-access-range\".\n - Enter a description for your range, such as \"Range of IP addresses to be used for the Private services access connection\".\n - Select **Automatic** if you want Google to choose your range for you.\n 1. Enter a CIDR prefix of `/24` or less. For example, `/23` is an acceptable prefix. Note that smaller CIDR prefixes create larger IP address ranges.\n - Select **Custom** if you want to choose the range yourself.\n 1. Enter your desired range with a CIDR prefix of `/24` or less.\n - Click **Allocate**.\n8. Click **Private connections to services**.\n\n9. Click the **Create connection** button.\n\n10. Under the **Assigned allocation** dropdown, select the range you just\n created in the steps above.\n\n11. Click **Ok**.\n\n12. Click **Connect**.\n\n13. Refresh the page to see your new connection listed under the **Private\n connections to services** tab.\n\n### Console: Redis\n\n1. Enable the Service Networking API:\n\n [Enable the Service Networking API](https://console.cloud.google.com/apis/library/servicenetworking.googleapis.com)\n\n If you are using Shared VPC, enable the API in both the Service Project\n and the Host Project.\n2. Follow the steps at [Creating a Redis instance on a VPC network](/memorystore/docs/redis/create-manage-instances#creating_a_redis_instance_on_a_vpc_network)\n until you see the **Advanced network options** expander, and open it.\n\n | **Note:** If you see the **Private service connection required** panel, a private services access connection has not been established yet. If you do not see this panel, the connection has already been established for your network, and any Redis instance created with this network uses the [private services access connection mode](/memorystore/docs/redis/networking#connection_modes).\n3. Click the **Set Up Connection** button in the **Private service\n connection** panel. Doing so opens a slide-out panel for setting up\n private services access.\n\n4. Allocate an IP range using one of the following methods:\n\n - Select an existing IP range.\n - Allocate a new IP range.\n - Enter a **name** for your range.\n - Enter a valid CIDR range with a block size of `/24`. For example: `10.0.0.0/24`.\n - Use an automatically allocated IP range.\n5. Click the **Create Connection** button."]]
