If you have a restricted VPC environment where external domains need to be allowed, here is a list of Google Cloud Platform (GCP) urls that Apigee hybrid may need to connect with during install and runtime.
GCP URLs for all Apigee hybrid installations
These URLs are used by all Apigee hybrid installations:
- accounts.google.com
- apigee.googleapis.com
- apigeeconnect.googleapis.com
- binaryauthorization.googleapis.com
- cloudresourcemanager.googleapis.com
- compute.googleapis.com
- container.googleapis.com
- deploymentmanager.googleapis.com
- gkeconnect.googleapis.com
- gkehub.googleapis.com
- iam.googleapis.com
- imcredentials.googleapis.com
- logging.googleapis.com
- monitoring.googleapis.com
- oauth2.googleapis.com
- pubsub.googleapis.com
- runtimeconfig.googleapis.com
- servicecontrol.googleapis.com
- serviceusage.googleapis.com
- stackdriver.googleapis.com
- storage.googleapis.com
- www.googleapis.com
- googlecode.I.googleusercontent.com
- storage.I.googleusercontent.com
- gcr.io
Additional GCP URLs for all Anthos installations
These URLs are used by Apigee hybrid installations on Anthos.
For information on Anthos, see:
- Create a GKE on-prem cluster
- Anthos GKE on-prem overview in the Google Cloud documentation.
Containers and images in Kubernetes and Docker
- *.docker.io
- *.k8s.io
- quay.io
Google APIs and resources
- console.cloud.google.com
- packages.cloud.google.com
- accounts.google.com
- *.googleapis.com
Updates to admin workstation linux libraries
- ppa.launchpad.net
- us-west1.gce.archive.ubuntu.com
Terraform components
- checkpoint-api.hashicorp.com
- releases.hashicorp.com
Additional Cloud utilities
- *.googleusercontent.com