Our purpose is to access 'appserver' via SSH from 'testserver'. For this, we need to share private and public key between both of these instances. But in GCP, there is no need to share keys between instances. We just need to copy public key in the metadata of GCP then we can access instances via SSH. But make sure instances must ping each other.
Steps we need to follow:
- Create two Linux instances named testserver and appserver
- Login to appserver and create key-pair
- Copy public key into the metadata of GCP
- Login to testserver and ssh to appserver
Step 1: Create two instances:
- Create an instance named 'testserver':
GCP âž” Compute Engine âž” VM Instances âž” Create Instance âž” Name: testserver âž” Region: asia-south1 (Mumbai) âž” Zone: asia-south1-a âž” Machine type: n1-standard âž” CPU Platform: Automatic âž” Boot Disk: CentOS 7 (from here we can select the operating system) âž” Boot Disk Type: Standard persistent disk âž” Size: 10 GB âž” Select âž” Service Account: Compute Engine default service account âž” Access Scope: [*] Allow default access âž” Firewall: [*] Allow HTTP traffic âž” [*] Allow HTTPS traffic âž” Create.
- Create another instance named 'appserver':
GCP âž” Compute Engine âž” VM Instances âž” Create Instance âž” Name: appserver âž” Region: asia-south1 (Mumbai) âž” Zone: asia-south1-b âž” Machine type: n1-standard âž” CPU Platform: Automatic âž” Boot Disk: CentOS 7 (from here we can select the operating system) âž” Boot Disk Type: Standard persistent disk âž” Size: 10 GB âž” Select âž” Service Account: Compute Engine default service account âž” Access Scope: [*] Allow default access âž” Firewall: [*] Allow HTTP traffic âž” [*] Allow HTTPS traffic âž” Create.
Step 2: Login to appserver and create keys:
GCP âž” Compute Engine âž” VM Instances âž” Select instance âž” Click on the SSH in front of the appserver. |
| Fig: New instance created |
Use command 'ssh-keygen' to create public and private keys. As we use this command, public and private keys creates in .ssh directory in home directory of user. Like, I am logged in by user divakar_rastogi. So, .ssh directory will be created in /home/divakar_rastogi directory.
$ cd .ssh
$ pwd
/home/divakar_rastogi/.ssh
$ ls –la
 |
| Fig: List .ssh directory before creating key-pair |
$ ssh-keygen
Enter file in which to save the key (/home/divakar_rastogi/.ssh/id_rsa): <hit enter>
Enter passphrase (empty for no passphrase): <hit enter>
Enter same passphrase again: <hit enter>
$ ls –la
 |
| Fig: List .ssh directory after the creation of key-pair |
Now, we can see id_rsa and id_rsa.pub has been created. Here, id_rsa is a private key and id_rsa.pub is a public key.
Copy the content of public key. Now, navigate to GCP
GCP âž” Compute Engine âž” Metadata âž” SSH Keys âž” Edit âž” + Add Item âž” Paste entire key data into provided text box âž” Save.
$ ssh <IP_of_appserver>
Enjoy!
Step 3: Copy public key into the metadata of GCP:
$ cat id_rsa.pubCopy the content of public key. Now, navigate to GCP
GCP âž” Compute Engine âž” Metadata âž” SSH Keys âž” Edit âž” + Add Item âž” Paste entire key data into provided text box âž” Save.
Step 4: Login to testserver and ssh to appserver:
GCP âž” Compute Engine âž” VM Instances âž” Select instance âž” click on the SSH in front of testserver, this will open its console. Now, use commands:$ ssh <IP_of_appserver>
Enjoy!
Nice and good article.Keep on sharing
ReplyDeleteGCP Training Online
Online GCP Training
Truly, this article is really one of the very best in the history of articles. I am a antique ’Article’ collector and I sometimes read some new articles if I find them interesting. And I found this one pretty fascinating and it should go into my collection. Very good work! Google Cloud
ReplyDelete