Is the Google managed service range (34.118.224.0/20) supported for standard, private, GKE clusters?
I asked a related question here: Can I have the Google managed service range on a standard gke cluster created with Terraform- non auto-pilot
This question is specific to standard (non-autopilot), private clusters. I cannot get GKE to provision a private cluster with the new managed 34.118.224.0/20.
Now it is a private cluster, but 34.118.224.0/20 is special and my expectation was that the cluster would not have to be public to use that special managed range because all Google customers can assign all their clusters this same range- does public/private really apply to this magic non rfc 1918 range?
When I create new private clusters through the UI and check off Automatically create secondary ranges I get ranges like this, not from the managed range:
Now I can choose it manually and I have to check another box if I do:
I tried that and when creating the cluster it was on "configuring" for 30+ minutes then failed with the error:
Retry budget exhausted (80 attempts): Google Compute Engine: Invalid value for field 'resource.secondaryIpRanges[3].ipCidrRange': '34.118.224.0/20'. Invalid IP address range.
It would be nice to get a definitive answer here. The docs have nothing say about a GKE cluster that is standard, private, and using the Google managed service range configuration. I don't think this config is especially obscure, I want a private cluster and use this new fully managed service range.
Can someone confirm if this is supported?
The Google-managed services range 34.118.224.0/20 is currently only supported on Autopilot clusters. Hopefully support for Standard clusters will roll out later this year.
- How to fix CloudRun error 'The request was aborted because there was no available instance'
- Firebase CLI console: Cannot find module @google-cloud/tasks
- Does Cloud SQL have a query console or is CLI the only option?
- How to use Google Cloud Shell with the new Windows Terminal
- Why does GKE kubernetes cluster need a version?
- Unable to Read Mounted GCSFuse Directory After Adding --implicit-dirs Option
- Error: 10: Developer console is not set up correctly (Not Using Firebase) (One Tap sign-up)
- Connection between Private GKE and Cloud SQL
- Kubernetes cluster architecture
- Validating PubSub message against AVRO JSON schema with multiple union types
- Can i run cloud run jobs locally
- How to log SSL/TLS Handshake details on Google Cloud Load Balancer
- Utilizing Gemini: Through Vertex AI or through Google/generative-ai?
- How to use Puppeteer in 2nd gen Cloud Functions?
- GCP Logging: who created a Project?
- How do I query firestore data that is inside collections in said document?
- Why would Mysql return "error Column cannot be null"?
- Difficulty setting up Oauth, Error (400): invalid_scope
- Google App Engine with load balancer to enforce TLS version, and multiple regions
- How to define period of time to delete TTL firestore Google cloud
- setting up global gcp vm
- Google Cloud Function - Can't Find Cloud Function Run role
- Why GCP calculator asked me to specify region when using GLOBAL cloud balancer?
- Generating Cloud Storage Signed URL from Google Cloud Function without using explicit key file
- What is the recommended way to store fields that require restricted characters in firebase?
- Google Meet REST API Permission denied on resource Space (or it might not exist) error
- Add Date column base on other columns in Bigquery
- How to SSH to docker container in kubernetes cluster?
- Pulling Map object from Firestore, getting random garbage
- GCP - private GKE cluster and connection from another project