gce/WARN/2022_001

GCE connectivity: IAP service can connect to SSH/RDP port on instances.

Product: Compute Engine
Rule class: WARN - Something that is possibly wrong

Description

Traffic from the IP range 35.235.240.0/20 to VM instances is necessary for IAP TCP forwarding to establish an encrypted tunnel over which you can forward SSH, RDP traffic to VM instances.

Further information

Using IAP for TCP forwarding