On Google Cloud I have a VM that I would like almost completely cut-off from the internet (due to security reasons). I know I can cut if off via both iptables and Cloud Firewall rules, including outgoing traffic.
However, I still require the VM to read and write data to a Cloud Storage bucket - which of course uses HTTPS and (fairly) random external IP:s.
Any way to allow Cloud Storage access, but deny everything else that is outgoing?
So far I figured I can probably setup a HTTPS proxy that only allow access to certain domains, but it feels like a bit of a hack (plus require another service).