Reputation: 267
Google Load Balancer firewall for instances/backends under LB
I have a load balancer with 3 different backends with 3 different “host and path rules”. So depending on the url the LB will redirect to 3 different backends. Each backend is connected to an instance group (3 different groups) and each group only contains 1 single instance (a total of 3 different instances).
Is it possible to apply firewall rules for specific backends? So that for 1 of the backends make a firewall rule so that it is only accessible from my IP address.
Or is this something I have to handle in my servers and block/allow the specific IP’s I want to have access to the servers.
Thank you in advance!
Upvotes: 1
Views: 412
Answers (1)
Reputation: 2435
Yes, you can do that. Navigate to your firewall rules and create separate rules for each backend. The prerequisite for that would be having a tag applied to each instance in each group, for example tag green to each instance in instance group green and tag blue to each instance in instance group blue.
Here how this should look like (of course your settings may vary)
Upvotes: 1
Related Questions
- How to specify multiple backends for TCP Load Balancer with Google Cloud Deployment Manager
- google cloud HTTPS load balancer session affinity
- Load Balancer : Health Check fails for no reason
- Google Load Balancer creating frontend IP that differs from Compute Engine IP
- Setup load balancer for Google Compute Engine VM
- What GCE IPs should I open to Google Load Balancer on Firewall to my instance groups?
- Load balancing - unhealthy instances in google compute engine Network load balancer