NCC Gateway setup overview

Stay organized with collections Save and categorize content based on your preferences.

This page gives you an overview of the steps required to set up NCC Gateway.

Before you begin the setup process for NCC Gateway, familiarize yourself with the following resources:

• Network Connectivity Center overview

• NCC Gateway overview

As part of the NCC Gateway setup process, you must complete several tasks. Depending on your configuration, the way that you complete these tasks can vary significantly. The following set up instructions use a four spoke group network topology.

Set up NCC Gateway

The tasks to set up NCC Gateway include the following:

1. Create a hub and connect it to a VPC network

   You first create a Network Connectivity Center hub to which you can attach NCC Gateway spokes. The hub must use the preset hybrid inspection topology. Then, connect application Virtual Private Cloud (VPC) networks to the hub and group them based on the hybrid inspection preset topology.

2. Create an NCC Gateway spoke

   You must create an NCC Gateway spoke and attach it to the hub that you created.

3. Connect the Secure Access Connect attachment to NCC Gateway

   The Secure Access Connect attachment lets you connect NCC Gateway with third-party Security Service Edge (SSE) products.

   NCC Gateway supports connections to the following SSE products:

   • Symantec Cloud Secure Web Gateway (Cloud SWG)
   • Palo Alto Networks Prisma Access

   To complete this step, you must already have an account with the provider.

4. Add hybrid connections to the NCC Gateway spoke

   Your Google Cloud and on-premises environment or other cloud environments must be connected through hybrid connectivity by using Cloud Interconnect VLAN attachments with Cloud Router.

5. Create and manage NCC Gateway advertised routes

   Each NCC Gateway advertised route that you create is installed in the route table of the Network Connectivity Center hub to which the NCC Gateway spoke is connected. The NCC Gateway gateway itself is the next hop for each route that it advertises.

Add regions

If you want to add NCC Gateway spokes and hybrid connections in other regions, repeat steps 2-5 in the NCC Gateway setup. Adding more connections is optional.

Manage NCC Gateway

After you have configured NCC Gateway, you can manage the gateway. See the following resources for instructions.

Hubs

• Update the hub
• Delete the hub

Spokes

• Update the NCC Gateway spoke's capacity

Advertised routes

• Create and manage NCC Gateway advertised routes

Cloud Routers

• Manage Cloud Routers
• View router details

You can't change the NCC Gateway linked with the Cloud Router. However, you can change the custom route advertisements. For detailed information about Cloud Router advertised routes, see Advertised routes.

What's next?

• To learn about NCC Gateway, see NCC Gateway overview.
• To learn how to configure NCC Gateway, see NCC Gateway setup overview.
• To learn how to configure Secure Access Connect, see Create a realm
• To find solutions for common issues, see Troubleshoot Network Connectivity Center.
• To get details about API and gcloud CLI commands, see APIs and reference.