cloud engineer
Here’s one way how to look at traffic hitting a GCP firewall. To view the traffic activity, go to Stackdriver Logging > Viewer. Enter the following search string. Just replace the network name and firewall name.
logName:(projects/project-name/logs/compute.googleapis.com%2Ffirewall) AND jsonPayload.rule_details.reference:("network:network-name/firewall:firewall-name") |
If you’re downloading large files, you can speed up download speeds by modifying gsutil. Decrease the number of threads and increase the number of components.
gsutil \ -o "GSUtil:parallel_thread_count=1" \ -o "GSUtil:parallel_process_count=8" \ cp gs://bucket/source.dat /download/dest/file.dat |
Here’s how display the Service Account of a particular instance in Google Cloud.
gcloud compute instances describe server-name \ --zone us-central1-c \ --project project-id \ --format="flattened(serviceAccounts[].email)" |
Result is:
serviceAccounts[0].email: service-account-name@project-id.iam.gserviceaccount.com |
Here’s how to create a key for the GCP Service Account.
Create Key.
gcloud iam service-accounts keys create ~/key.json \ --iam-account service-name@project-id.iam.gserviceaccount.com |
Revoke Key.
gcloud auth revoke service-account@project-id.iam.gserviceaccount.com |
Here’s how to create a GCP Service Account.
gcloud beta iam service-accounts create service-account-name \
--description "service account description" \
--display-name "service account display name" |