How Google Cloud VPN Pricing Works & Affordable Alternatives | Tech Lada


What’s Google Cloud VPN?

Google Cloud VPN is a managed service provided by Google that lets organizations securely entry the sources they host of their Google Cloud Platform (GCP) digital personal clouds (VPCs). Google Cloud VPN is used to securely join a GCP VPC with different VPCs or non-GCP personal networks (site-to-site or S2S connections).

It is very important word that Google Cloud VPN doesn’t help customers accessing VPC sources (point-to-site or P2S connections). Should you want an answer for remotely accessing your VPC, see the “Alternate options to Google Cloud VPN” part beneath.

It’s doable to arrange your individual VPN server inside GCP, however the promoting level of Google Cloud VPN is that it streamlines the concerned technique of establishing, configuring and deploying a VPN server.

Whereas the technical technique of establishing a Google Cloud VPN could also be simpler, it’s a paid service that comes with an advanced pricing mannequin. Whereas the prices of working and managing your individual VPN server software program are usually fairly clear, Google Cloud VPN’s pricing relies on a complicated array of variables which make it difficult to find out anticipated prices for budgeting functions.

On this article, we’ll break down how Google Cloud VPN’s pricing works, present a handy value calculator, and assessment some options to Google Cloud VPN.

How Google Cloud VPN Pricing Works

You’ll incur Google Cloud VPN expenses for 3 completely different gadgets:

  • Cloud VPN gateway cost (time-based)
  • Variety of non-tunnel exterior IP addresses assigned to a VPN gateway (time-based)
  • Information switch expenses for IPsec egress site visitors (usage-based)

Let’s dive into every merchandise and perceive what they’re and what drives their value.

VPN Gateway Cost

Google expenses for every VPN gateway you’ve based mostly on the variety of tunnels you’ve connected to that gateway. A tunnel on this case is a safe connection that’s established between a VPN gateway, and one other VPN gateway related to a unique personal community (which might be one other GCP VPC or a non-GCP personal community, equivalent to an on-premises workplace community). Moreover, Google is not going to invoice for tunnels if they’re in sure states (for instance, a tunnel will not be billed whereas it’s in a provisioning or deprovisioning state).

For every tunnel, Google expenses an hourly payment that’s based mostly on the Google Cloud area by which the VPN gateway is situated.

Google additionally provides what it calls “excessive availability” (HA) VPN gateways. These gateways have a 99.99% availability SLA, however require a pair of tunnels to be arrange on every gateway. Which means if you’re connecting two VPCs collectively, you will want a complete of 4 tunnels (2 tunnels connected to every HA VPN gateway in every VPC). Every HA VPN gateway should even be in the identical Google Cloud area.

  • Every VPN tunnel: $0.05 to $0.075 per hour

Non-tunnel Exterior IP Addresses

Google additionally expenses for every exterior IP tackle assigned to a VPN gateway, however provided that the IP tackle will not be used as a public IP tackle for a Cloud VPN tunnel. (Google additionally doesn’t cost for static exterior IP addresses which might be assigned to forwarding guidelines that ship site visitors to the VPN gateway.)

For every exterior IP tackle, Google expenses an hourly payment that’s based mostly on their customary exterior IP tackle pricing, which is:

  • Static and ephemeral IP addresses used on customary VM cases: $0.004 per hour
  • Static and ephemeral IP addresses used on preemptible VM cases: $0.002 per hour

Preemptible VM cases are cheaper VMs that use extra Compute capability inside Google Cloud, however are topic to being stopped if the surplus computing energy is required by customary VM cases.

At the moment, expenses are the identical whatever the area that the VPN gateway is situated in, however Google could introduce differentiated pricing in future. In abstract:

  • Every non-tunnel exterior IP tackle: $0.002 to $0.004 per hour

Egress Information Switch Costs

Google expenses information switch charges for egress site visitors (site visitors exiting a VPC by way of a Cloud VPN gateway). Two pricing schemes exist relying on the vacation spot of that site visitors: outbound site visitors destined for an additional Cloud VPN gateway makes use of VM-VM egress pricing charges, and outbound site visitors destined for a VPN gateway outdoors of Google Cloud makes use of web egress pricing charges. Charges are attributed to the venture of the VM that’s sending the site visitors.

If the supply and vacation spot Cloud VPN gateways are in the identical Google Cloud area, egress site visitors is billed as site visitors between zones in the identical area.

VM-VM egress pricing: VM-VM site visitors is priced on a per GB foundation, and the speed is decided by the area of the supply VPN gateway and the area of the vacation spot VPN gateway, in addition to whether or not inner IP addresses or exterior IP addresses are getting used. (Observe that the IP tackle of the vacation spot VPN gateway determines the vacation spot location, not the IP tackle of the vacation spot VM a connection is finally supposed for.)

Egress site visitors is most cost-effective when it’s despatched to the identical Google Cloud zone or area. Inter-regional egress site visitors inside the similar continent is costlier ($0.01 to $0.08 per GB), and intercontinental egress site visitors is costlier nonetheless ($0.08 to $0.15 per GB).

  • Quantity of VM-VM egress information transferred: As much as $0.15 per GB

Web egress pricing: Google provides two tiers of web egress pricing – Commonplace and Premium (Premium is used because the default until you specify Commonplace explicitly). Each tiers value utilizing completely different approaches.

Premium Tier pricing expenses a per GB price which relies on: (1) the area the supply VPN gateway is situated in, (2) the situation of the site visitors’s vacation spot, and (3) the combination month-to-month bandwidth used, with decrease charges obtainable with higher month-to-month bandwidth use.

For instance, if in case you have a Cloud VPN gateway within the Las Vegas area (us-west4), the primary 1 TB of egress site visitors sure for Australia in a month is charged at $0.19 per GB, and the subsequent 9 TB is charged at $0.18 per GB.

Commonplace Tier pricing expenses a per GB price which relies on: (1) the area the supply VPN gateway is situated in, and (2) the combination month-to-month bandwidth used, with decrease charges obtainable with higher month-to-month bandwidth use.

For instance, if in case you have a Cloud VPN gateway within the Tokyo area (asia-northeast1), the primary 10 TB of egress site visitors in a month is charged at $0.11 per GB (no matter vacation spot), and the subsequent 140 TB is charged a $0.075 per GB.

(As of the date of publication, we word there’s an inconsistency with items in Google’s pricing web page for the Commonplace Tier – it mentions that egress pricing is per GiB delivered, however the desk and in all places else on the web page references GB, so now we have assumed GB is the right unit. GBs are smaller than GiBs.)

  • Quantity of web egress information transferred (premium tier): $0.08 to $0.23 per GB
  • Quantity of web egress information transferred (customary tier): $0.045 to $0.12 per GB

Google Cloud VPN Pricing Calculator

As a result of there are quite a lot of variables to account for when understanding pricing, we’ve made this Google Cloud VPN Pricing Calculator that can assist you estimate the charges you may count on to pay in your Cloud VPN.


Google Cloud VPN Pricing Calculator
Google Cloud VPN Pricing Calculator

We word that pricing adjustments once in a while. The data on this article is correct to the most effective of our data on the date of writing, however it’s best to test the Google Cloud web site for the freshest pricing.

Abstract

Google Cloud VPN can’t be used as a P2S VPN server. Should you use it as a P2P VPN server, the fees you may count on to pay for Google Cloud VPN embrace:

  • Hourly charges for every VPN tunnel connected to a Cloud VPN gateway
  • Hourly charges for every non-tunnel exterior IP tackle assigned to a Cloud VPN gateway
  • Bandwidth charges for egress site visitors from the VPC the VPN gateway is situated in

Alternate options to Google Cloud VPN

Google Cloud VPN will not be your solely choice for establishing a safe solution to entry your GCP VPC environments. Furthermore, one of many main limitations of Google Cloud VPN is that it can not at present be used as a point-to-site VPN gateway that enables purchasers to securely join right into a GCP VPC.

Google Cloud Market Merchandise

The Google Cloud Market accommodates a spread of service suppliers who supply their very own VPN software program options that combine with GCP. If you’re on the lookout for a P2S VPN gateway for Google Cloud, Google suggests in its documentation that clients could select a market vendor resolution if a P2S VPN gateway is required.

Every vendor provides their very own pricing mannequin, and a typical deployment mannequin is to supply VPN server software program inside a digital machine (VM) you can deploy into your VPC. OpenVPN Entry Server is one such P2S-capable resolution that’s made obtainable as an equipment. A subscription to the answer is bought straight from OpenVPN and costs are based mostly on the variety of VPN connections wanted, with a 5 connection minimal, and may be billed month-to-month or yearly.

Manually Put in Merchandise

On the opposite aspect of the spectrum, you might manually set up and configure a software program resolution on a VM inside your GCP VPC. Though there could also be no software program licensing payment related to this route (equivalent to for open supply software program) or maybe a one-off cost for a perpetual license (for industrial software program), it does require much more effort and experience by way of setup and upkeep. Moreover, help will not be offered, so you will have to hunt third celebration assist in the event you run into issues (both paid, or from free sources like group boards).

Zero Belief Various

If you’re finally on the lookout for a distant entry resolution, additionally take into account Zero Belief Community Entry merchandise that aren’t based mostly on VPN know-how, equivalent to Twingate. Twingate may be put in in a GCP VPC with a single line of code. Moreover, deployment may be automated in a wide range of methods.

One other benefit of Twingate is that, not like VPN applied sciences, there’s no idea of establishing site-to-site VPN tunnels to determine connectivity to your numerous community subnets. That reduces deployment complexity, in addition to pricing complexity.

Zero Belief options have distinct safety benefits over VPNs as nicely.

Twingate’s Pricing Mannequin

A key advantage of utilizing Twingate to safe distant entry to your GCP setting is that the pricing mannequin is simple. Twingate’s pricing relies on a per consumer flat payment mannequin. Which means prices are predictable – and also you don’t want a spreadsheet to work them out!

The one variables that influence Twingate’s pricing are the variety of customers you’ve, the months or years you subscribe to the service (relying on whether or not you might be billed month-to-month or yearly), and the Twingate plan you choose (Groups, Enterprise or Enterprise). Twingate doesn’t cost for bandwidth used or time linked. We even supply a free Starter plan if you wish to strive us out or in the event you solely have a restricted quantity of infrastructure you might want to safe.

Should you use Twingate with non-GCP environments, help for GCP comes at no additional value. In actual fact, Twingate secures entry to all main varieties of environments (AWS, GCP, Azure, and on-premises) you will have for a similar payment, and the setup course of is comparable for every setting.

Simplify Your GCP Safe Distant Entry Wants

Twingate goals to supply the safety advantages of a non-VPN Zero Belief resolution whereas making deployment and administration of that resolution so simple as doable. A part of that is offering a easy to grasp pricing mannequin that gained’t unexpectedly blow out your finances.

Contact us to be taught extra about how simple and value efficient implementing a contemporary zero belief resolution may be.

How Google Cloud VPN Pricing Works & Affordable Alternatives

x