GCP Deploy

You can deploy Akto using the GCP packet mirroring template. Here are the steps to deploy:

  1. Click on this link to see the template.

  2. Go to your console in GCP and type these commands

wget https://raw.githubusercontent.com/akto-api-security/infra/feature/self_hosting/templates/gcp-mirroring-template.sh
chmod +x gcp-mirroring-template.sh

This will create a template with name gcp-mirroring-template.sh

3. Make sure you are in the project where you want create resources.

4. Create a txt file with name inputs.txt with the following input parameters.


Here is an example below:


5. Go to the instances you want to mirror and add network tag 'mirror' to them. You can do this by clicking on edit button and scrolling down to the network tags section.

6. Now start creating resources by writing this command ./gcp-mirroring-template.sh create <inputs.txt

Troubleshoot: if you get permission denied error, type and enter the command chmod +x gcp-mirroring-template.sh

7. The above command will create the following resources:

8. Once all the resources are created, go to VM instances in your google cloud.

9. Click on the akto-dashboard-instance and find the IP.

10. Copy and paste this IP in your browser and add port 8080 to it ( http://yourIP:8080)

11. You can signup on Akto dashboard.

To delete all the resources you created with 'akto' prefix, run the command ./gcp-mirroring-template.sh delete <delete.txt

Before running the above command, make sure you create delete.txt with the following inputs:


Troubleshooting Notes

  1. Since the instance group requires health check metrics, please ensure that health check IPs for GCP i.e., are allowed on port TCP port 8000 for the VM instances.

  2. Ensure that internal calls are allowed between created VMs.

  3. Open the ports carrying the mirrored traffic on the VMs in the akto-instance-group. Generally traffic is carried on TCP port 80.

  4. If you're accessing akto-dashboard from a public network, allow http traffic on it.

Last updated