Skip to main content
Private subnets let resources communicate without exposing every service to the public internet. Use private subnets for:
  • App servers talking to databases.
  • Worker VMs talking to internal APIs.
  • Kubernetes nodes reaching project services.
  • Load balancers forwarding to backend VMs.

Create a private subnet

1

Open Networking

In the project sidebar, choose Networking.
2

Choose Private Subnets

Open the private subnet tab.
3

Create a subnet

Pick a location and CIDR range that does not conflict with other networks.
4

Attach resources

Attach VMs, firewalls, or load balancers as needed.

CIDR planning

Use private ranges such as: 
10.0.0.0/16
172.16.0.0/12
192.168.0.0/16
Keep each environment in a predictable subnet range. It makes firewall and troubleshooting work much easier.