- How to connect to VPNs
- GCP Private Service Connect and other GCP Private Access methods
- Use GCP Cloud DNS from AWS
- Use AWS Route53 from GCP
This is the third story in the above posts.
In the last post, we talked about how to create a private service connection (GCP PSC) and make PSC ip available in aws as well. However, in order to use the actual GCP apis, we also need to set up a private DNS zone for `googleapis.com ‘ and register a record for PSC IP.
There are three ways that resources within AWS VPC can query the domain ‘googleapis.com ‘.
- Use public DNS Zone owned by google
- Make
googleapis.com
Private DNS Zone in GCP Cloud DNS - Make
googleapis.com
Private DNS Zone in AWS Route53
- First, the first method is to use the DNS zone for domain
'.googleapis.com'
because Google already has a DNS zone configured for public ip to be queried in the domain '. However, the previously created PSC ip cannot be registered as a domain record of '.googleapis.com ' here, so it cannot be used in the current scenario. - Both methods 2 and 3 are applicable to the current scenario because they configure a private DNS zone that allows the customer to query the domain…