google-cloud-platform google-compute-engine google-kubernetes-engine

How to programmatically get the network tags for a GKE cluster

If I create a new GKE cluster called cluster-1, the VMs in the cluster will all have an auto-generated network tag, e.g. gke-cluster-1-d4732bcc-node.

Is it possible, using gcloud CLI or something else, to programmatically retrieve this network tag using the cluster name?

Solution

I achieved this by getting one of the auto-generated firewall rules for the GKE cluster and pulling out the target tag:

CLUSTER_NAME=<cluster-name>
PROJECT_ID=<project-id>

NODE_NETWORK_TAG=$(gcloud compute firewall-rules list --project $PROJECT_ID --filter="name~gke-$CLUSTER_NAME-[0-9a-z]*-master" --format="value(targetTags[0])")

echo "$NODE_NETWORK_TAG"

How to make the server backend of a mobile app?
How to use GCP Backend Bucket with regional subnet using terraform
403 iam.serviceAccounts.actAs permission error trying to attach a service account to a resource in another project
Cloud Run: mounting volume timed out: The NFS server may not be reachable or may not exist
Migration from Container Registry to Artifact Registry for App Engine Standard Deployments
Google Cloud: Access to image has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource
Im creating a VM using terraform code in GCP. I would like to inject a script that runs when the vm is created upon startup
QUOTA_EXCEEDED : Exceeded daily quota for email sign-in in spite of using my SMTP settings
How do I add share drive access to a google service account
google.cloud namespace import error in __init__.py
difference between docker BRIDGE and HOST driver?
How can I connect an externally hosted MySQL database to BigQuery?
Issue when trying to register an app for consent screen in google oauth
Google Cloud Platform Trace from Cloud Function Invocation to Cloud Run HttpRequest
Google OAuth 2 Error 400: redirect_uri_mismatch but redirect uri is compliant and already registered in Google Cloud Console
Firebase Firestore timestamp not allowed inside array
Why am I not able to get the env var values from google secret manager?
changing image repository from Container Registry to Artifact Registry
ALS (Alternating Least Square) algorithm in multiple rankings for a user
Unable to connect to Gemini / Vertex AI
How can I get Firebase Authentication ID tokens to work with Google Cloud Identity Platform so they get validated?
How to identify the storage space left in a persistent volume claim?
Cloud Run container stops processing when running parallel FastAPI background tasks
GCP Cloud Storage - Golang aws sdk2 - Upload file with s3 INTEROPERABILITY Creds
Creating folders using GCP PHP Client Libraries
GKE Fluent bit partial logs
Data loading and transformation from gcs to bigquery
How to forcefully stop an operation on GKE cluster and thereby delete GKE cluster?
Apache Beam with Dataflow: flag 'ignore_unknown_columns' for WriteToBigQuery not working
Google Speech to Text - Not Getting the transcription | SOLVED