The following terms apply to Cloud VPN gateways and tunnels and
gateways on your peer network.
Cloud VPN gateway
A virtual VPN gateway running in Google Cloud managed by Google, using
a configuration that you specify in your project, and used only by you. Each
Cloud VPN gateway is a regional resource that uses one or more regional
external IP addresses. A Cloud VPN gateway can connect
to a peer VPN gateway.
Replaces Classic VPN with a gateway that provides a 99.99%
availability SLA. For more information, see
Cloud VPN: HA VPN.
external VPN gateway
A gateway resource that you configure in Google Cloud for
HA VPN that provides information to Google Cloud
about your peer VPN gateway or gateways. Depending on the high availability
recommendations from your peer VPN gateway vendor, you can create an external
VPN gateway resource for the different types of peer VPN gateways described in
peer VPN gateway
A gateway that is connected to a Cloud VPN gateway. A peer VPN
gateway can be one of the following:
Another Cloud VPN gateway
A VPN gateway hosted by another cloud provider such as AWS or Microsoft Azure
An on-premises VPN device or VPN service
remote peer IP address
For an HA VPN gateway interface that connects to an external
VPN gateway, the remote peer IP address is the IP address of the interface on the external
VPN gateway that is used for the tunnel.
For an HA VPN gateway interface that connects to
another HA VPN gateway, the remote peer IP address is
the IP address of the other HA VPN gateway's interface
that is used for the tunnel.
For Classic VPN, the remote peer IP address is the external IP address
of the peer VPN gateway.
A VPN tunnel connects two VPN gateways and serves as a virtual medium through
which encrypted traffic is passed. Two VPN tunnels must be established to
create a connection between two VPN gateways: each tunnel defines the
connection from the perspective of its gateway, and traffic can only pass after
the pair of tunnels is established. A Cloud VPN tunnel is
always associated with a specific Cloud VPN gateway resource.
As defined for Google Cloud, a logical link between
Cloud VPN and peer VPN locations as identified by
a vpnGateway resource at one end, and an
externalVpnGateway or another
Google Cloud VpnGateway resource at the peer end. A connection
also includes all the vpnTunnel resources and BGP sessions
between the gateway resources.
An exterior gateway routing protocol standardized by the Internet Engineering
Task Force (IETF) in RFC 1722.
BGP automatically exchanges routing and reachability information among autonomous
systems on the internet. Your device is BGP-capable if it can perform BGP
routing, which means that you can enable the BGP protocol on it and assign it a
BGP IP address and an autonomous system number. To determine if your
device supports BGP, see the vendor information for your device or contact your device's vendor.
A collection of connected IP routing prefixes under the control of a single
administrative entity or domain that presents a common routing policy to the
internet, such as an internet service provider (ISP), a large company,
or a university.
autonomous system number (ASN)
A unique identifier allocated to each autonomous system that uses BGP routing.
For more information, see
Google Cloud terms
The following terminology applies to Google Cloud and its features.
Google Cloud is a suite of public cloud computing services offered by Google.
For more information, see
Google Cloud products.
The ID of your Google Cloud project. A project contains networking
resources such as networks, subnets, and Cloud VPN gateways as described
in the VPC network overview. For a
description of the difference between project name, project ID, and project
You can view the project ID in the
Google Cloud Console.