Networking
Cloud Interconnect & Cloud VPN
Connect your on-premises network to GCP
AWS equivalent
Direct Connect / Site-to-Site VPN
AWS → GCP: Key Differences
- ▸
Dedicated Interconnect = AWS Direct Connect: physical private fiber.
- ▸
Partner Interconnect: connect via a third-party provider (like a Thai ISP) — easier than dedicated.
- ▸
HA VPN: two tunnels for high availability (99.99% SLA). Classic VPN is single tunnel (99.9% SLA).
Key Concepts to Know
- 1
Dedicated Interconnect: 10Gbps or 100Gbps links. Direct physical connection.
- 2
Partner Interconnect: 50Mbps to 50Gbps via a GCP partner. Good for Thailand.
- 3
Cloud VPN: IPsec encrypted tunnel over public internet. HA VPN = 2 tunnels, 99.99% SLA.
- 4
Cloud Router: BGP routing between on-prem and GCP.
DCE Interview Tips
- ★
For Thai enterprise migration: 'Most customers in Thailand use Partner Interconnect via their ISP, or HA VPN for secure connectivity during and after migration.'
- ★
'During migration, we'd set up a VPN first for assessment, then switch to Interconnect for production traffic.'
Common Gotchas
- !
Dedicated Interconnect requires meeting Google in a colocation facility — in Thailand, customers typically use Partner Interconnect.
- !
Cloud Interconnect traffic is NOT encrypted by default. Add MACsec or IPsec if needed.