Acessar serviços externos usando o acesso a serviços privados
Mantenha tudo organizado com as coleções
Salve e categorize o conteúdo com base nas suas preferências.
As instâncias do Looker (Google Cloud Core) que usam o Acesso a serviços privados e são configuradas com apenas IP particular ou IP particular e público podem precisar de mais configurações para se conectar a serviços ou recursos fora da rede VPC da instância. As seções a seguir descrevem outras opções de configuração.
Conectar-se a outras VPCs usando o acesso a serviços privados
Para usar IPs internos e se conectar a serviços em outras VPCs hospedadas pelo Google ou por terceiros, use o acesso a serviços privados.
Durante a criação de instâncias do Looker (Google Cloud Core), você criou uma conexão de acesso a serviços particulares para conectar sua VPC ao serviço do Looker (Google Cloud Core). Também é possível atualizar a alocação de IP de uma conexão de acesso a serviços particulares sem interromper o tráfego.
Para configurar uma conexão de acesso a serviços privados:
Configure a conexão particular entre sua rede VPC e a rede do produtor de serviços usando o intervalo de IP alocado. Essa conexão particular estabelece um Peering de redes VPC entre a VPC e a outra rede.
As conexões particulares são um relacionamento um para um entre a rede VPC e o produtor de serviços. Se um único produtor de serviços oferecer vários serviços, você precisará apenas de uma conexão particular para todos eles.
Conectar-se a recursos locais ou de terceiros usando o acesso a serviços privados
Se a instância foi criada para usar o acesso a serviços particulares, com IP particular ou IP particular e público, use uma das duas opções a seguir para conectar instâncias do Looker (Google Cloud Core) a recursos locais ou serviços de terceiros:
Atualize os firewalls locais para permitir o tráfego com a sub-rede do Looker (Google Cloud Core).
Configure o encaminhamento de DNS, que permite que o Looker (Google Cloud Core) se conecte a qualquer recurso local.
Configure o peering de DNS com a VPC gerenciada pelo Google do Service Networking para que a instância do Looker (Google Cloud Core) resolva os nomes de host particulares.
Cloud Interconnect e Cloud Router
O diagrama de rede a seguir mostra como o Cloud Interconnect e o Cloud Router interagem com o serviço Looker (Google Cloud Core) para se conectar a uma rede local:
O acesso a serviços particulares conecta o serviço do Looker (Google Cloud Core) à VPC por endereços IP internos usando o peering de VPC.
O Cloud Router usa o Border Gateway Protocol (BGP) para anunciar os prefixos de IP privados e programar rotas dinâmicas com base nas divulgações de BGP recebidas de um par. O Cloud Interconnect é usado para se conectar à rede local.
Cloud VPN e Cloud Router
Para conferir um tutorial sobre como criar uma instância do Looker (Google Cloud Core) de IP particular e público e conectá-la a um banco de dados local usando o Cloud VPN e o Cloud Router, consulte o codelab Conectar o Looker Cloud em uma rede híbrida.
[[["Fácil de entender","easyToUnderstand","thumb-up"],["Meu problema foi resolvido","solvedMyProblem","thumb-up"],["Outro","otherUp","thumb-up"]],[["Difícil de entender","hardToUnderstand","thumb-down"],["Informações incorretas ou exemplo de código","incorrectInformationOrSampleCode","thumb-down"],["Não contém as informações/amostras de que eu preciso","missingTheInformationSamplesINeed","thumb-down"],["Problema na tradução","translationIssue","thumb-down"],["Outro","otherDown","thumb-down"]],["Última atualização 2025-08-25 UTC."],[],[],null,["Looker (Google Cloud core) instances that use [private services access](/looker/docs/looker-core-create-private-ip) and are configured with private connections or hybrid connections may require additional configuration to connect to services or resources outside of the instance's VPC network. The following sections describe additional configuration options.\n\n\nConnect to other VPCs using private services access\n\nTo use internal IPs to connect to services in other VPCs that are hosted by either Google or third parties, you can use [private services access](/vpc/docs/private-services-access).\n\nDuring Looker (Google Cloud core) [instance creation](/looker/docs/looker-core-create-private-ip#before_you_create_a_instance), you created a private services access connection to connect your VPC to the Looker (Google Cloud core) service. You can also [update the IP allocation](/vpc/docs/configure-private-services-access#modifying-connection) of an existing private services access connection without disrupting traffic.\n\nTo set up a private services access connection:\n\n1. [Allocate an internal IP range](/vpc/docs/configure-private-services-access#allocating-range) in your VPC network.\n2. [Set up the private connection](/vpc/docs/configure-private-services-access#creating-connection) between your VPC network and service producer's network, using the allocated IP range. This private connection establishes a [VPC Network Peering](/vpc/docs/vpc-peering) connection between your VPC and the other network.\n\nPrivate connections are a one-to-one relationship between your VPC network and a service producer. If a single service producer offers multiple services, you only need one private connection for all of the producer's services.\n\nConnect to on-premises resources or third-party services using private services access\n\nIf your instance was created to use private services access, with either private connections or hybrid connections, you can use either of the following two options to connect Looker (Google Cloud core) instances to on-premises resources or third-party services:\n\n- [Cloud Interconnect](/network-connectivity/docs/interconnect/concepts/overview) and [Cloud Router](/network-connectivity/docs/router/concepts/overview)\n- [Cloud VPN](/network-connectivity/docs/vpn/concepts/overview), specifically HA VPN, and [Cloud Router](/network-connectivity/docs/router/concepts/overview)\n\nWith either method, you will need to do the following:\n\n- Configure a [dynamic route](/vpc/docs/routes#dynamic_routes) in your Looker (Google Cloud core) VPC for each on-premises resource.\n- Set up a [custom advertised route](/network-connectivity/docs/router/concepts/advertised-routes) of the Looker (Google Cloud core) [private services access subnet](/vpc/docs/configure-private-services-access#about_the_service_producers_subnet) on all Cloud Routers that are deployed in the Looker (Google Cloud core) VPC.\n- Update your on-premises firewalls to allow traffic with the Looker (Google Cloud core) subnet.\n- Configure [DNS forwarding](/dns/docs/overview#dns-forwarding-methods), which will let Looker (Google Cloud core) connect to any on-premises resources.\n- Configure [DNS Peering](/sdk/gcloud/reference/services/peered-dns-domains) with the Service Networking Google Managed VPC for the Looker (Google Cloud core) instance to resolve the private hostnames.\n\nCloud Interconnect and Cloud Router\n\nThe following network diagram shows how Cloud Interconnect and Cloud Router interact with the Looker (Google Cloud core) service to connect to an on-premises network:\n\n1. Private services access connects the Looker (Google Cloud core) service with the VPC over internal IP addresses using VPC peering.\n2. Cloud Router uses Border Gateway Protocol (BGP) to advertise the IP prefixes and program dynamic routes based on the BGP advertisements it receives from a peer. Cloud Interconnect is used to connect to the on-premises network.\n\nCloud VPN and Cloud Router\n\nFor a walkthrough of how to create a private and public IP Looker (Google Cloud core) instance and connect it to an on-premises database using Cloud VPN and Cloud Router, see the [Connect Looker Cloud over hybrid networking](https://codelabs.developers.google.com/codelabs/looker-hybrid-networking) codelab.\n\nWhat's next?\n\n- [Connect Looker Cloud over hybrid networking](https://codelabs.developers.google.com/codelabs/looker-hybrid-networking)\n- [Connecting Looker (Google Cloud core) to your database](/looker/docs/looker-core-dialects)\n- [Prepare your Looker (Google Cloud core) instance for users](/looker/docs/looker-core-instance-setup)\n- For an example of how to manually install [Looker Marketplace](/looker/docs/marketplace) content, see the Looker Community article, [Installing the Looker API Explorer on a Looker (Google Cloud core) instance on a private IP network](https://www.googlecloudcommunity.com/gc/Technical-Tips-Tricks/Installing-the-Looker-API-Explorer-on-a-Looker-Google-Cloud-core/ta-p/722671)."]]