https://cloud.google.com/sdk/docs#deb
echo "deb [signed-by=/usr/share/keyrings/cloud.google.gpg] https://packages.cloud.google.com/apt cloud-sdk main" | sudo tee -a /etc/apt/sources.list.d/google-cloud-sdk.list
sudo apt-get install apt-transport-https ca-certificates gnupg curl
curl https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key --keyring /usr/share/keyrings/cloud.google.gpg add -
sudo apt-get update && sudo apt-get install google-cloud-sdk
gcloud init
PROJECT_NAME=kght6123
INSTANCE_NAME=
SERVICE_ACCOUNT=
TEMP=
gcloud beta compute --project "${PROJECT_NAME}" \
instances create "${INSTANCE_NAME}" \
--zone "asia-northeast1-a" \
--machine-type "g1-small" \
--subnet "default" \
--maintenance-policy "MIGRATE" \
--service-account "${SERVICE_ACCOUNT}" \
--scopes "https://www.googleapis.com/auth/cloud-platform" \
--min-cpu-platform "Automatic" \
--image "ubuntu-1604-xenial-v20171121a" \
--image-project "ubuntu-os-cloud" \
--boot-disk-size "10" \
--boot-disk-type "pd-standard" \
--boot-disk-device-name "${INSTANCE_NAME}" \
--metadata-from-file startup-script="${TEMP}"
gcloud beta compute --project=kght6123 instance-templates create-with-container instance-template-vpn-only --machine-type=e2-micro --network=projects/kght6123/global/networks/default --network-tier=PREMIUM --metadata=google-logging-enabled=true --can-ip-forward --maintenance-policy=MIGRATE --service-account=644202306253-compute@developer.gserviceaccount.com --scopes=https://www.googleapis.com/auth/devstorage.read_only,https://www.googleapis.com/auth/logging.write,https://www.googleapis.com/auth/monitoring.write,https://www.googleapis.com/auth/servicecontrol,https://www.googleapis.com/auth/service.management.readonly,https://www.googleapis.com/auth/trace.append --tags=http-server,https-server --image=cos-stable-81-12871-148-0 --image-project=cos-cloud --boot-disk-size=30GB --boot-disk-type=pd-standard --boot-disk-device-name=instance-template-vpn-only --no-shielded-secure-boot --shielded-vtpm --shielded-integrity-monitoring --container-image=hwdsl2/ipsec-vpn-server --container-restart-policy=always --container-env=VPN_IPSEC_PSK=kght7267,VPN_USER=kght6123,VPN_PASSWORD=kght2237 --labels=container-vm=cos-stable-81-12871-148-0 --reservation-affinity=any
# 暗号鍵を生成してGCPへ登録(blink) https://qiita.com/cognitom/items/c489991a05f9abac748f#codeanywhere-%E3%81%8B%E3%82%89-gcp-%E3%81%B8
blink> ssh-keygen -t rsa -b 4096 -m PEM -f asw_rsa.pem -C ‘’
blink> cat asw_rsa.pem.pub
# 暗号鍵を生成してGCPへ登録(linux)
ssh-keygen -t rsa -f ~/.ssh/gcp_gce_kght6123 -C kght6123
cat ~/.ssh/gcp_gce_kght6123.pub