Facilitating the Spread of Knowledge and Innovation in Professional Software Development

Write for InfoQ


Choose your language

InfoQ Homepage News Google Cloud Private Service Connect Now Generally Available

Google Cloud Private Service Connect Now Generally Available

This item in japanese

Google Cloud has recently announced the general availability of Private Service Connect, a service to keep all customers' traffic private and secure over Google's global network while abstracting the underlying network infrastructure.

Launched in alpha one year ago, Private Service Connect allows users to create a private and secure connection from a VPC to Google Cloud, third parties, or proprietary services. Using endpoints and service attachments, the new service sends traffic from the consumer's VPC to the service producer's VPC network.


Rahul Vir and Pierre Ettori, product managers at Google Cloud, explain the main advantage of Private Service Connect:

Customers told us they want to consume services faster while making sure that the connectivity is private and secure. In the past, achieving this was a challenge: networking teams had to negotiate IP address blocks, mutually agree on policies and coordinate as applications evolved to newer versions. With Private Service Connect, you can delegate the consumption and delivery of services to different teams without having to coordinate between teams.

Connecting to service endpoints that are locally managed, users can create multiple Private Service Connect endpoints in the same VPC network and there is no limit on bandwidth to a particular endpoint. As Private Service Connect endpoints use global internal IP addresses, they can be referenced by any resource in a VPC network. Richard Rose, lab architect at Google Cloud, tweets:

This is pretty awesome. If you want a tiered approach, you should definitely look into this.

Among the suggested use cases, customers can create private connections to services like Cloud Storage or Bigtable and third party partners like Elastic, MongoDB or Snowflake. As the new service does not cap the bandwidth for the endpoints, Private Service Connect partners can create multi-tenant services that scale without limitations.

Deepak Michael created a codelab to show how to control the traffic going to the endpoint and to demonstrate that the traffic remains within Google Cloud. Johanes Glenn, customer solution consultant at Google, wrote an article on FAUN where he tests Private Service Connect connectivity to Google APIs and manages the communication within Google Cloud and with external environments. Google also released the video "Traditional vs. Service Networking with Ryan Przybyl" to show the differences between traditional and service networking with Private Service Connect.

Google Cloud is not the first cloud provider introducing a service to simplify network architectures and to avoid exposing network data to the internet. Microsoft offers Azure Private Link and Amazon has Private Link, the AWS service to establish private connectivity between VPCs and services hosted on AWS or on-premises.

Private Service Connect is available in all Google Cloud regions and pricing is described in the VPC pricing page.

Rate this Article