Connecting to VPC internal services from Google Cloud Shell

vpc-peering google-cloud-sql google-cloud-shell

Is it possible to access services (like CloudSQL or some custom applications) that are running on internal IPs only (VPC) from cloud shell?

The idea behind it, I want to keep Cloud SQL on private IPs and use it from Cloud Run (works fine), but occasionally I need to connect to that SQL manually and run some queries (like watching app audit logs stored in database).

It looks like an overkill and too complicated to have VPN or Cloud Proxy instance running or to spin up a dedicated App Engine VM as a jump node to just occasionally run MySQL client from cloud shell, so I'm looking for an alternative "direct" method without exposing MySQL on a public IP.


Bastion hosts provide an external facing point of entry into a network containing private network instances, as illustrated in the following diagram.

enter image description here

This host can provide a single point of fortification or audit and can be started and stopped to enable or disable inbound SSH.

Related

How to fix this error (querySelector is used): Cannot read properties of undefined (reading 'style') at showSlides
Convert list to list of lists
Async method call from ThreadPool thread deadlocks
Center Expanded ListView inside Column Flutter
Rolling count of IDs over time frame with condition
How to cofigure nginx to serve a pdf file?
Why place of Mem[MA] in MB then copy from MB to IR rather than going straight from Mem[MA] to IR?
Why does this dplyr filter not work in shiny, but works fine when run without shiny?
How to create global variable in Swift?
How to remove spaces between grouped bar charts with unequal number of bars?
Which port should i use for MariaDB ? I cant seem to use 3306 as TCP port for MariaDB cause mySQL is already using that
how to find all permutations in an array [duplicate]