Heiwu
Reputation: 107
how to create gcp projects without default network using gcloud sdk
For terraform there is an option "auto_create_network = false" to skip creation of a default net within a new project.
Is there also an option/flag for gcloud sdk / gcloud projects create (e.g. --skip-default-network)? Or must we use org policy constraints/compute.skipDefaultNetworkCreation (https://cloud.google.com/resource-manager/docs/organization-policy/org-policy-constraints)?
Upvotes: 0
Views: 1052
Answers (1)
DazWilkin
Reputation: 40296
Terraform's solution is to delete the default network promptly after creation:
https://www.terraform.io/docs/providers/google/r/google_project.html#auto_create_network
Therefore, you:
- either use the org policy to never create it
- or (you do what Terraform does and)
gcloud compute networks deleteit after creation:
Example
Please test this in a sacrificial project to ensure it meets your needs
gcloud compute firewall-rules list \
--project=${PROJECT} \
--filter="network:/projects/${PROJECT}/global/networks/default" \
--format="value(name)" \
| xargs gcloud compute firewall-rules delete \
--project=${PROJECT} \
--quiet
gcloud compute networks delete default \
--project=${PROJECT} \
--quiet
Upvotes: 4
Related Questions
- Create GCP project without organization
- GCE Node Api use custom network with no external IP
- How to create a project in GCP via java SDK?
- How can I create a default project in Google Cloud?
- Google Cloud Build on private VPC network
- How to Create a Network and SubNetwork using Google deployment-manager (GCP)
- Creating a Project programmatially in GCP
- Using 'gcloud services vpc-peerings connect' in Deployment Manager
- Access gcp instance in another project
- ERROR: (gcloud.app.deploy) INVALID_ARGUMENT: Network 'default' does not exist