A private space within Google Cloud
Virtual Private Cloud (VPC) gives you the flexibility to scale and control how workloads connect regionally and globally. When you connect your on-premises or remote resources to Google Cloud, you’ll have global access to your VPCs without needing to replicate connectivity or administrative policies in each region. You can now bring your own IP addresses to Google’s network across all regions.
A single Google Cloud VPC can span multiple regions without communicating across the public internet. For on-premises scenarios, you can share a connection between VPC and on-premises resources with all regions in a single VPC. You don't need a connection in every region.
With a single VPC for an entire organization, teams can be isolated within projects, with separate billing and quotas, yet still maintain a shared private IP space and access to commonly used services such as VPN or Cloud Interconnect.
Google Cloud VPCs let you increase the IP space of any subnets without any workload shutdown or downtime. This gives you flexibility and growth options to meet your needs.
Use VPC flow logs for near real-time (5-second interval) logging to monitor your deployment for both performance analysis and network forensics. This allows you to keep your deployment running securely and at peak efficiency.
VPC can automatically set up your virtual topology, configuring prefix ranges for your subnets and network policies, or you can configure your own. You can also expand CIDR ranges without downtime.
Troubleshoot your existing VPCs by collecting and inspecting network traffic at scale, providing intrusion detection, application performance monitoring, and compliance controls.
Securely connect your existing network to VPC network over IPsec.
Segment your networks with a global distributed firewall to restrict access to instances. Firewall Rules Logging lets you audit, verify, and analyze the effects of your firewall rules.
Configure private communication across the same or different organizations without bandwidth bottlenecks or single points of failure.
Configure a VPC network to be shared across several projects in your organization. Connectivity routes and firewalls associated are managed centrally. Your developers have their own projects with separate billing and quota, while they simply connect to a shared private network, where they can communicate.
Forward traffic from one instance to another instance within the same network, even across subnets, without requiring external IP addresses.
VPC flow logs
Flow logs capture information about the IP traffic going to and from network interfaces on Compute Engine. VPC flow logs help with network monitoring, forensics, real-time security analysis and expense optimization. GCP flow logs are updated every five seconds, providing immediate visibility.
Simple and complex architectures
Host globally distributed multi-tier applications by creating a VPC with subnets. Connect GCP- or externally hosted databases to Google’s machine learning services by creating a VPC with subnets and VPN access.
With application replication, create backup GCP compute capacity, then revert back once the incident is over.
Get private access to Google services, such as storage, big data, analytics, or machine learning, without having to give your service a public IP address. Configure your application’s front end to receive internet requests and shield your backend services from public endpoints, all while being able to access Google Cloud services.
Bring your own IPs
Bring your own IP addresses to Google’s network across all regions to minimize downtime during migration and reduce your networking infrastructure cost. After you bring your own IPs, GCP will advertise them globally to all peers. Your prefixes can be broken into blocks as small as 16 addresses (/28), creating more flexibility with your resources.
Packet Mirroring Partners
VPC offers compelling price/performance pricing. Learn more.