We plan to use Big Query and Cloud Storage, but you have questions regarding access via VPN / VPC.
As a big request, GCS are managed services, is it right to assume that it is not possible to restrict access to data-level buckets and data sets to connections included in the VPC.
We understand that these services are authenticated against the global Google API infrastructure and, by definition, publicly disclosed.
Is it possible to restrict access to the managed services of Google to the incoming VPC connection and remove authentication / authorization based on the Internet / Internet for our projects?
source
share