[google-cloud-sql-discuss] Re: DNS in CloudSQL wth private IP

Hi Neil,

Connecting with TLS/SSL certificates without the Cloud SQL proxy is definitely supported. 

I can't say for sure without more details, but it sounds like your driver is trying to fully-verify the certificate by making sure that the CN resolves to the same IP you are trying to correct with. I don't know which database engine you are using, but here is the postgres docs that explains this behavior:

> Once a chain of trust has been established, there are two ways for the client to validate the leaf certificate sent by the server. If the parameter sslmode is set to verify-ca, libpq will verify that the server is trustworthy by checking the certificate chain up to the root certificate stored on the client. If sslmode is set to verify-full, libpq will also verify that the server host name matches the name stored in the server certificate. The SSL connection will fail if the server certificate cannot be verified. verify-full is recommended in most security-sensitive environments.

If you make sure your driver is using `sslmode=required` or `sslmode=verify-ca`, you should be able to connect without any issues. Here's an example configuring a TCP connection using TLS.

Hope that helps. 

On Tuesday, April 26, 2022 at 4:03:58 PM UTC-6 neil....@gmail.com wrote:

How do we set DNS in CloudSQL wiith private IP only. I am using the server cert from the CloudSQL instance but get the following error when using the private IP in nodejs code.

"code":"ERR_T │
│ LS_CERT_ALTNAME_INVALID","message":"Hostname/IP does not match certificate's altnames: Host: localhost. is not cert's CN: <CloudSQL_Instance_NAME>"

 Understand the the private ip can be assigned a domain name but I have the following concern

1. I don't own any domain, how do we use Cloud DNS to get a google domain subdomain or equivalent?
2. PrivateIP will change when Instance edited i.e. when Network is changed, then Cloud DNS would point to wrong IP.
3. As per the above error message its not clear which domain the certificate is minted for it just shows the fully qualified cloud SQL instance name.

I understand cloud SQL proxy is solution to everything related to ths but isn't really there any other option?

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/52af01cb-20ea-4e6e-8e49-fc0cee41254bn%40googlegroups.com.

[google-cloud-sql-discuss] DNS in CloudSQL wth private IP

How do we set DNS in CloudSQL wiith private IP only. I am using the server cert from the CloudSQL instance but get the following error when using the private IP in nodejs code.

"code":"ERR_T │
│ LS_CERT_ALTNAME_INVALID","message":"Hostname/IP does not match certificate's altnames: Host: localhost. is not cert's CN: <CloudSQL_Instance_NAME>"

 Understand the the private ip can be assigned a domain name but I have the following concern

1. I don't own any domain, how do we use Cloud DNS to get a google domain subdomain or equivalent?
2. PrivateIP will change when Instance edited i.e. when Network is changed, then Cloud DNS would point to wrong IP.
3. As per the above error message its not clear which domain the certificate is minted for it just shows the fully qualified cloud SQL instance name.

I understand cloud SQL proxy is solution to everything related to ths but isn't really there any other option?

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/3b34b9a7-f679-44a3-bcdf-b82b7878c7f8n%40googlegroups.com.

[google-cloud-sql-discuss] Re: Google Cloud SQL MySQL connect only with server-ca

Hi Kasia,

You don't need to "create a client certificate and download the certificates to your Cloud MySQL client host" but you do need to play with certificates if you intend to actually verify client/server identity. You may also take a look at this public documentationdescribing how to configure SSL/TLS certificates.

On Thursday, April 21, 2022 at 1:13:56 PM UTC-4 kasia...@gmail.com wrote:

I have a client that doesn't support using client certificates for authentication but can accept the server-ca.pem. Is it possible to enable SSL on Cloud SQL MySQL but authenticate only with the server-ca? Please let me know. Thank you.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/3a1cfec6-b839-40bd-8de0-8caa5b1f4d69n%40googlegroups.com.

[google-cloud-sql-discuss] Google Cloud SQL MySQL connect only with server-ca

I have a client that doesn't support using client certificates for authentication but can accept the server-ca.pem. Is it possible to enable SSL on Cloud SQL MySQL but authenticate only with the server-ca? Please let me know. Thank you.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/dd5db473-8299-4e96-b15b-bdd1fad8419bn%40googlegroups.com.

[google-cloud-sql-discuss] Re: Support statement_timeout for postgresql

As stated in the documentation, you could request features with issue trackers:

You can also request and vote for new Google Cloud features. Unlike issue reports, we don't immediately triage new feature requests. Instead, we wait for a feature to have a handful of stars and, hopefully, comments from several users about how the feature would be useful. So, when it comes to feature requests, it's especially important to vote for an existing request (if one exists) instead of making a duplicate.

As stated in the request at Support statement_timeout for PostgreSQL database flag.

To star an issue, you should follow these steps:

1. Open the issue.

2. Click the star icon next to the issue title.

    

As I can see in the thread, there is a comment stating that the request has been forwarded to the Cloud SQL product team.

If you need further assistance, you can open a Support case.

On Saturday, April 9, 2022 at 10:27:28 AM UTC-5 mark....@getg5.com wrote:

Is there any way to upvote this or is there another method to submit a feature request?

On Monday, August 10, 2020 at 5:24:00 AM UTC-7 dho....@gmail.com wrote:

Hi, 

I would like to ask for supporting `statement_timeout` for PostgreSQL database flag.

That would be very useful to limit the long running query.Thanks.

Eric

This email may contain information that is privileged, confidential, or proprietary and is intended solely for the named addressee. If you are not the addressee, or if it appears that you have received this email in error, please advise me immediately by reply email, do not disclose, copy, or distribute the contents, and immediately delete the message and any attachments from your system. Thank you.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/51ae7870-5a9b-4491-9df0-ef13ba54d47dn%40googlegroups.com.

[google-cloud-sql-discuss] Re: Provide SQL Database Restoration Process

Hi,

I am glad that it helps. Please let us know if you have any other questions regarding this.

On Saturday, April 9, 2022 at 5:07:29 PM UTC-4 jeem...@gmail.com wrote:

Thanks for sharing. Really helpful for Bad Bunny Hoodies.

On Tuesday, 15 February 2022 at 03:47:05 UTC+5 George (Cloud Platform Support) wrote:

How did you export data, and how exactly did you restore it from backup? 

This issue might be strictly related to your project, and SQL instance. One needs to have project number and other private data to investigate. This information is not supposed to be shared in a public thread as this one. This is why it's recommendable to rather open a support case from your Cloud Console, or an issue in the Public Issue Tracker. 

On Monday, 14 February 2022 at 13:15:02 UTC-5 kprudhv...@gmail.com wrote:

we have SQL Backup retention for 7 days, Here we have the backup of 7 days.

we need to restore all data as we followed the process of restoring from  https://cloud.google.com/sql/docs/mysql/backup-recovery/restoring 

I have selected the latest backup and restored it into a new SQL instance.

But some of the data is missing in the new SQL instance. please provide steps on how to recover full data from backups

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/e9ec0c15-d798-4823-88f0-74985dca6748n%40googlegroups.com.

[google-cloud-sql-discuss] Re: Max connections on PGSQL

According to the Operational errors table if you get the message Remaining connection slots are reserved, the maximum allowed connections have been reached. You can increase the value of the max_connections flag. See Configuring database flags.

Database connections consume resources on the server and the connecting application. Always use good connection management practices to minimize your application's footprint and reduce the likelihood of exceeding Cloud SQL connection limits. For more information, see Managing database connections.

To see the processes that are running on your database, use the pg_stat_activity table:

select * from pg_stat_activity;

You can also try Tools for debugging connectivity

The db-f1-micro and db-g1-small machine types aren't included in the Cloud SQL SLA. These machine types are configured to use a shared-core CPU, and are designed to provide low-cost test and development instances only. Don't use them for production instances.

On Saturday, April 9, 2022 at 10:27:26 AM UTC-5 Rafael Falcão wrote:

Hello. I am using a f1-micro database with Strapi as CMS. But Strapi cannot connect to the database since there are no connections available.

SQL say it has 2 active connections and i cant establish more. Changing the tier to g1-small solves this issue but why is this happening? Why cant i establish more than 2 (that belong to CloudSQL) connections to the database if its a f1-micro? Is this a bug?

Thank you.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/8b36d207-8414-45d0-9f18-8ab93a4fc840n%40googlegroups.com.

Re: [google-cloud-sql-discuss] Re: Size of Cloudsql Instance reduced from 70 GB to 51GB

Hello. Bin logs update regularly and use storage space. These are automatically deleted with their associated automatic backup, which generally happens after about 7 days. However, I could not find a way for you to verify this on your end. Should you require further information, you can contact GCP support since they can inspect your instance and provide you with more relevant details about this.

On Saturday, April 9, 2022 at 5:07:29 PM UTC-4 rehanj...@gmail.com wrote:

Thanks for sharing such a great solution. It is really helpful for Tyler the Creator Merch Store.

On Monday, 14 March 2022 at 21:08:49 UTC+5 masif...@gmail.com wrote:

Hi David.

Thanks for your reply. Yes I am talking about used storage. You may be right. Google update activity may purge binlogs. How can we verify it? Can we access the instance?

On Sat, Mar 12, 2022 at 1:15 AM 'David (Cloud Platform Support)' via Google Cloud SQL discuss <google-cloud...@googlegroups.com> wrote:

Hello,

I'm not sure whether you are referring to used storage or total available storage. However, if it's used storage, this may be a case where the bin logs were purged. However, to know for a fact, this issue requires someone from the support team to inspect your instance. I would recommend you to contact GCP support as they can surely provide you with information about this storage reduction you are seeing on your instance.

On Friday, March 11, 2022 at 8:02:32 AM UTC-5 masif...@gmail.com wrote:

Hi Geeks,

 We are using cloudsql instance which size gradually increased to 70 GB. Yesterday morning it was 70 GB. But today I notice that it is reduced to 51GB. Please guide me what may be the cause?

Yesterday there was some update activity happen on our DB not by us but by Google. 

What this updation activity can do. May be some other reasons. Please guide.

Regards 

M.Asif

--
You received this message because you are subscribed to a topic in the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/google-cloud-sql-discuss/Rlm3Z2xDGBg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to google-cloud-sql-d...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/387978c3-2f08-4196-9c84-738fd66b29abn%40googlegroups.com.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/03b62a12-b109-497b-94a7-14074eed090fn%40googlegroups.com.

[google-cloud-sql-discuss] Re: Provide SQL Database Restoration Process

Thanks for sharing. Really helpful for Bad Bunny Hoodies.

On Tuesday, 15 February 2022 at 03:47:05 UTC+5 George (Cloud Platform Support) wrote:

How did you export data, and how exactly did you restore it from backup? 

This issue might be strictly related to your project, and SQL instance. One needs to have project number and other private data to investigate. This information is not supposed to be shared in a public thread as this one. This is why it's recommendable to rather open a support case from your Cloud Console, or an issue in the Public Issue Tracker. 

On Monday, 14 February 2022 at 13:15:02 UTC-5 kprudhv...@gmail.com wrote:

we have SQL Backup retention for 7 days, Here we have the backup of 7 days.

we need to restore all data as we followed the process of restoring from  https://cloud.google.com/sql/docs/mysql/backup-recovery/restoring 

I have selected the latest backup and restored it into a new SQL instance.

But some of the data is missing in the new SQL instance. please provide steps on how to recover full data from backups

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/ff718137-099e-435c-a63b-b80444c242f0n%40googlegroups.com.

Re: [google-cloud-sql-discuss] Re: Size of Cloudsql Instance reduced from 70 GB to 51GB

Thanks for sharing such a great solution. It is really helpful for Tyler the Creator Merch Store.

On Monday, 14 March 2022 at 21:08:49 UTC+5 masif...@gmail.com wrote:

Hi David.

Thanks for your reply. Yes I am talking about used storage. You may be right. Google update activity may purge binlogs. How can we verify it? Can we access the instance?

On Sat, Mar 12, 2022 at 1:15 AM 'David (Cloud Platform Support)' via Google Cloud SQL discuss <google-cloud...@googlegroups.com> wrote:

Hello,

I'm not sure whether you are referring to used storage or total available storage. However, if it's used storage, this may be a case where the bin logs were purged. However, to know for a fact, this issue requires someone from the support team to inspect your instance. I would recommend you to contact GCP support as they can surely provide you with information about this storage reduction you are seeing on your instance.

On Friday, March 11, 2022 at 8:02:32 AM UTC-5 masif...@gmail.com wrote:

Hi Geeks,

 We are using cloudsql instance which size gradually increased to 70 GB. Yesterday morning it was 70 GB. But today I notice that it is reduced to 51GB. Please guide me what may be the cause?

Yesterday there was some update activity happen on our DB not by us but by Google. 

What this updation activity can do. May be some other reasons. Please guide.

Regards 

M.Asif

--
You received this message because you are subscribed to a topic in the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/google-cloud-sql-discuss/Rlm3Z2xDGBg/unsubscribe.
To unsubscribe from this group and all its topics, send an email to google-cloud-sql-d...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/387978c3-2f08-4196-9c84-738fd66b29abn%40googlegroups.com.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/2b3ebafb-7a80-4192-85db-67406278ed3an%40googlegroups.com.

[google-cloud-sql-discuss] Max connections on PGSQL

Hello. I am using a f1-micro database with Strapi as CMS. But Strapi cannot connect to the database since there are no connections available.

SQL say it has 2 active connections and i cant establish more. Changing the tier to g1-small solves this issue but why is this happening? Why cant i establish more than 2 (that belong to CloudSQL) connections to the database if its a f1-micro? Is this a bug?

Thank you.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/db7b3273-945d-4a31-88b3-89de31f8b341n%40googlegroups.com.

[google-cloud-sql-discuss] Re: Support statement_timeout for postgresql

Is there any way to upvote this or is there another method to submit a feature request?

On Monday, August 10, 2020 at 5:24:00 AM UTC-7 dho....@gmail.com wrote:

Hi, 

I would like to ask for supporting `statement_timeout` for PostgreSQL database flag.

That would be very useful to limit the long running query.Thanks.

Eric

This email may contain information that is privileged, confidential, or proprietary and is intended solely for the named addressee. If you are not the addressee, or if it appears that you have received this email in error, please advise me immediately by reply email, do not disclose, copy, or distribute the contents, and immediately delete the message and any attachments from your system. Thank you.

--
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/8af20f81-bb4e-4080-a3d1-8d2bafd46252n%40googlegroups.com.