Is there a way to retrieve the IP ranges used by the GCP Storage service? When I dig storage.googleapis.com
I get a list of IPs that is not included in the range present here.
My scenario:
I’m accessing a Google Cloud Storage bucket from an AWS network. I have an outbound rule in the AWS security group that allows connections to specific IP ranges. I need to include there the IP ranges for GCP Storage. Is there a similar concept in GCP to S3 managed prefix lists?
2
Answers
One way to do it is described here. This list is for google API endpoints, not restricted to storage service. You can take the IPs from goog.json and subtract the IPs from cloud.json to get the google APIs IPs. They can change so you need to retrieve them periodically.
Those IP Ranges you are sharing are for the Compute services per this documentation
I do not recall (and can not find at the moment) that exists such lists for the storage services on GCP.
But perhaps you can try to add a load balancer in front of the GCP Bucket? In this case you can whitelist the IP of the load balancer. This documentation might help