Please use the form below to provide your feedback. Because your feedback is valuable to us, the information you submit in this form is recorded in our issue tracking system (JIRA), which is publicly available. You can track the status of your feedback using the ticket number displayed in the dialog once you submit the form.

Create a VPC Peering Connection with GCP

  • Capella Operational
  • how-to
    +
    Use this procedure to create a VPC Peering connection between Capella hosted with GCP and your application’s VPC on GCP.

    Prerequisites

    To configure Couchbase Capella VPC peering with GCP, you need the following:

    Procedure

    1. In Capella, add a new private network for your cluster.

      1. Open the cluster where you want to create the new private network.

      2. Click the Settings tab.

      3. In the navigation pane, click VPC Peering.

      4. Click Set Up VPC.

      5. Confirm the prerequisites and click Next.

    2. In Capella, configure your private network details.

      1. Fill out the Network Details fields.

        You can find most of the required info for these fields on the page for your chosen VPC in GCP.
        Name

        Enter a descriptive name for the new private network.

        GCP Project ID

        The unique identifier for your GCP project. This is typically autogenerated in the form of rock-galaxy-123456 or similar.

        GCP Network Name

        The GCP VPC network name.

        Service Account Email

        The email address of the associated service account. This looks like <service-account-id>@rock-galaxy-123456.iam.gserviceaccount.com.

        CIDR Block

        The GCP VPC CIDR block of network in which your application runs. This cannot overlap with your Capella CIDR Block.

    3. Click Set Up VPC.

      Capella sets up the private network. This typically takes up to a minute. If successful you should see the private network added to the list of private networks, then you may briefly see the cluster enter a "Deploying" state while the new network is set up.

      If there’s a problem with the private network then Capella will tell you via an error message.

    4. Once setup is complete, you can see the new network listed in the list of networks. CAUTION: While the network status is shown as Complete, there are some final steps you must carry out before you can access your Capella cluster from your VPC over this private network.

    5. On the VPC Peering screen, click the listing for the new Private Network.

      This screen shows two commands to accept the peering request and link your VPC to the appropriate DNS server for hostname resolution. For example:

      $ gcloud compute networks peerings create <your-peer-name> --network=<your-vpc-network-name> --peer-project <your-gcp-project-id> --peer-network <capella-vpc-network-name>
      $ gcloud dns managed-zones create <your-zone-name> --description="Peering Zone to Capella" --dns-name=<dns-name-suffix> --account=<service-account-email-address> --networks=<your-vpc-network-name> --target-network=<your-vpc-network-name> --target-project=<your-gcp-project-id> --visibility=private

    6. Using the gcloud CLI, run the commands provided by Capella.

    Next Steps