Google Certified Associate Cloud Engineer 2020

Sign Up Free or Log In to participate!

Backend connecting to backend – egress rule

While trying to ping one backend instance via other backend instance’s SSH, do we use the former’s internal IP address or the external IP address? Because when I tried to ping in the SSH with the external IP address, it didn’t go through. While using an internal IP address, it worked. So now I am confused. Thanks in advance.

Rajendra P

i think its normal, because you are trying the connection within internal VPC and External IPs are used to connect from outside. In this case backend servers dont have rule to go out of VPC.

1 Answers

Because you don’t allow external/public traffic from outside the network to your backend instances, you can’t connect to the external IP. When SSH’d onto a frontend server, you use the internal IP which is on your "local" network because you’ve only allowed traffic that way and not via the public web.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?