{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 聊天终结者 的问题《How do I run private modules on Google App Engine?》','https://www.manongdao.com/q-899781.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have an application that I'd like to split into three layers:
- Public facing web service
- Private web service
- Private data store
1) are stateless frontend web servers that renders UI and mostly acts as proxy for 2).
2) must only be accessible from 1) and not the public internet.
3) must only be accessible from 2) and not 1) or the public internet.
I'd like to use GAE managed VMs for deploying both 1) and 2), while 3) is deployed to GCE. It's clear to me how to tag instances in GCE such that I can create firewall rules that apply to 3). However, it's not clear to me how to tag 1) and 2). I've looked into whatever documentation I can find on app.yaml and other things, but there doesn't seem to be much to find on instance tagging.
Is it possible to automatically tag GAE instances, and if so how?