The following procedure applies to tunnels connected to either Classic VPN or to HA VPN gateways.
Permissions required for this task
To perform this task, you must have been granted the following permissions OR the following IAM roles.
Deleting a VPN tunnel
To delete an existing Cloud VPN tunnel, do the following:
- Go to the VPN tunnels page.
- Check the box next to the VPN tunnel you want to remove.
- At the top of the screen, click Delete.
- Click Delete again when asked to confirm.
In the following commands, replace
[PROJECT_ID] with the ID of your
Identify the name and region of the VPN tunnel you need to remove. To list all VPN tunnels in your project:
gcloud compute vpn-tunnels list --project [PROJECT_ID]
Once you identify the VPN tunnel, replace
[REGION]with its name and region in the following steps.
Delete the tunnel using this command:
gcloud compute vpn-tunnels delete [NAME] \ --region [REGION] \ --project [PROJECT_ID]
Make a DELETE request with the
After deleting a VPN tunnel, consider the following:
Review your firewall rules and delete the rules that you no longer need.
If the tunnel used Classic VPN policy based routing or was a route based VPN, you should review the routes in your GCP network and delete any static routes that you no longer need.
If you used the GCP Console to delete the tunnel for a Classic VPN gateway, static routes that were automatically created should already be removed. If you used
gcloudto remove the tunnel, or if you created custom static routes for it, you will need to delete those manually.
If no more tunnels exist for the associated VPN gateway, you can delete the VPN gateway as well.