This document lists the quotas and limits that apply to Cloud SWG.
A quota restricts how much of a particular shared Google Cloud resource your Cloud project can use, including hardware, software, and network components.
Quotas are part of a system that does the following:
- Monitors your use or consumption of Google Cloud products and services.
- Restricts your consumption of those resources for reasons including ensuring fairness and reducing spikes in usage.
- Maintains configurations that automatically enforce prescribed restrictions.
- Provides a means to make or request changes to the quota.
When a quota is exceeded, in most cases, the system immediately blocks access to the relevant Google resource, and the task that you're trying to perform fails. In most cases, quotas apply to each Cloud project and are shared across all applications and IP addresses that use that Cloud project.
There are also limits on Cloud SWG resources. These limits are unrelated to the quota system. Limits cannot be changed unless otherwise stated.
The following quotas don't reset over time and instead are released when you release the resource.
|Gateways defined per project per region||5|
|URL lists defined per project per region||10|
|Policies defined per project per region||10|
To display quotas for gateways for your project, in the Google Cloud console, go to the Network Services API quotas page.
To display quotas for policies for your project, in the Google Cloud console, go to the Network Security API quotas page.
Cloud SWG enforces the following usage limits:
|Rules per policy||250|
|CEL regex matchers per policy||5|
|Maximum sub-expressions per rule||5000|
|Maximum entries per URL list||2500|
|Regex length||100 characters|
|Maximum matcher length||2048 characters|
Request a quota increase
To increase or decrease most quotas, use the Google Cloud console. For more information, see Requesting a higher quota.