Description

Disabling IP forwarding ensures the instance can only receive packets addressed to the instance and can only send packets with a source address of the instance.

Resolution: Disable IP forwarding.

Examples

Example of incorrect code:

resource "google_compute_instance" "bad_example" {
  name         = "test"
  machine_type = "e2-medium"
  zone         = "us-central1-a"

  boot_disk {
    initialize_params {
      image = "debian-cloud/debian-9"
    }
  }

  // Local SSD disk
  scratch_disk {
    interface = "SCSI"
  }

  can_ip_forward = true
}

Example of correct code:

resource "google_compute_instance" "bad_example" {
  name         = "test"
  machine_type = "e2-medium"
  zone         = "us-central1-a"

  boot_disk {
    initialize_params {
      image = "debian-cloud/debian-9"
    }
  }

  // Local SSD disk
  scratch_disk {
    interface = "SCSI"
  }
  
  can_ip_forward = false
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Files

google-compute-no-ip-forwarding.md

google-compute-no-ip-forwarding.md

Description

Examples

Files

google-compute-no-ip-forwarding.md

Latest commit

History

google-compute-no-ip-forwarding.md

File metadata and controls

Description

Examples