Support Center > Search Results > SecureKnowledge Details
Security Gateway and Management server not reading instances from GCP Shared VPC Project Technical Level
Symptoms
  • Security Gateway and/or Management server not reading instances from Google Cloud Platform (GCP) Shared VPC Project.
  • The host that is defined in the Datacenter object is not matching rules properly.
Cause

CloudGuard Controller correlate between NICs of Virtual Machines to their Projects > Networks > Subnets. In a Shared VPC configuration:

  • In the Service Project, the subnet belongs to the Shared VPC which is from another project. Therefor the Check Point host does not get it from Google, as it has access only to the Service project.
  • Since the Check Point host cannot find the relevant subnet due to this mismatch, the CloudGuard Controller fails.

Solution
Note: To view this solution you need to Sign In .