Deleting a Cloud VPN tunnel

The following procedure applies to tunnels connected to either Classic VPN or to HA VPN gateways.

Deleting a VPN tunnel

To delete an existing Cloud VPN tunnel, do the following:


  1. Go to the VPN tunnels page.
  2. Check the box next to the VPN tunnel you want to remove.
  3. At the top of the screen, click Delete.
  4. Click Delete again to confirm deletion.


In the following commands, replace [PROJECT_ID] with the ID of your project.

  1. Identify the name and region of the VPN tunnel you need to remove. To list all VPN tunnels in your project:

     gcloud compute vpn-tunnels list --project [PROJECT_ID]

    Once you identify the VPN tunnel, replace [NAME] and [REGION] with its name and region in the following steps.

  2. Delete the tunnel using this command:

     gcloud compute vpn-tunnels delete [NAME] \
       --region [REGION] \
       --project [PROJECT_ID]


Make a DELETE request with the vpnTunnels.delete method.


After deleting a VPN tunnel, consider the following:

  • Review your firewall rules and delete the rules that you no longer need.

  • If the tunnel used Classic VPN policy-based routing or was a route-based VPN, review the routes in your Google Cloud network. Delete any static routes that you no longer need.

  • If you used the Cloud Console to delete the tunnel for a Classic VPN gateway, static routes that were automatically created should already be removed. If you used gcloud to remove the tunnel, or if you created custom static routes for it, delete those tunnels manually.

  • If no more tunnels exist for the associated VPN gateway, you can delete the VPN gateway as well.

What's next