GCE: Option to skip public IP address association and use private IP address

This feature was implemented for EC2 in #221

> Often one wants to block SSH on the public IP address of the EC2 instance and only
expose SSH on the internal IP. It would be great if NixOps could fallback to, or prefer, the private IP
of the target when deploying.

I briefly looked into GCE backend implementation, it seems there is already some support for networking with private IPs.

It lacks (compared to ec2 implementation):

- `deployment.gce.associatePublicIpAddress` option to skip public IP address association
- `deployment.gce.usePrivateIpAddress` seems unnecessary, because of #443 (GCE: Use private ip if possible). Additionally we should make [address_to](https://github.com/NixOS/nixops/blob/28d2a10dd05a3fc1604eb705401b5a74233318f3/nixops/backends/gce.py#L149) GCE function return `private_ipv4` if `public_ipv4 == None`


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GCE: Option to skip public IP address association and use private IP address #829

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

GCE: Option to skip public IP address association and use private IP address #829

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions