Hacker News new | ask | show | jobs
by chimera77 2378 days ago
Your Cloud SQL instance would have a public IP, but would not be exposed to the internet. All traffic is blocked by default. Only GCP service accounts with the right permissions can make connections to your SQL instance, or IPs added to a whitelist (not recommended).
1 comments
cstpdk 2376 days ago
Ah, thanks for clearing that up, I was unaware. How is the traffic blocked by default? Firewall layer?
link
helpfulgoogler 2376 days ago
Yes. There is a proxy in front of the database which only allows whitelisted traffic (dangerous) or traffic with a valid cert (safe).
link