To connect to on-premises resources securely, such as SQL Server Instances, you can create a private Cloud Data Fusion instance. This private instance allows connections to be established over a private VPC network in your Google Cloud project. The traffic over this network doesn't pass through the public internet, which increases security. Furthermore, the private instance can connect to your on-premises resources via a connection to the Google Cloud private VPC network through Cloud VPN or Cloud Interconnect, which means you can securely access your on-premises resources over the private network without opening up access to Google Cloud
To create a private Cloud Data Fusion instance, you can use either the Google Cloud console. The steps are as follows:
- Go to the Create Data Fusion instance page.
- Enter an instance name and description for your instance.
- Select the Region in which to create the instance.
- Select a Cloud Data Fusion Version and Edition.
- Specify the Dataproc service account to use for running your Cloud Data Fusion pipeline in Dataproc. The default Compute Engine account is pre-selected.
- Expand the Advanced Options menu and click Enable Private IP.
- In the Network field, choose a network in which to create the instance.
- Click Create.
Once the private instance is created, you may need to set up VPC Network Peering to connect with the source and sink that you use in your pipeline. Cloud Data Fusion services that you use in your design environment, such as Wrangler, Connection Manager, and Schema Validation, initiate network connections from the tenant project VPC to the source systems. Cloud Data Fusion uses VPC Network Peering to establish network connectivity to the VPC or Shared VPC that contains your instance
For more information please see the following: https://cloud.google.com/data-fusion/docs/how-to/create-private-ip
LinkedIn
Twitter
