14 min read

Google Cloud GCP Diagram

September 30, 2021



A well laid out Google Cloud diagram is an important tool for managing and communicating the design and implementation of your GCP architecture.

Up to date GCP diagrams allow you to understand the design and operation of your Google Cloud Platform provisioned infrastructure and give you the ability to easily communicate your network topology design at all levels of your business.

Clear and easy to read visualized GCP infrastructure allows you to show new engineers and other team members how your network is constructed. Additionally you can also provide external consultants with the information they need to get started quickly which will save you a significant amount of consulting time and the associated costs. They won't have to spend hours or days working out what they are dealing with.

Clear GCP  diagrams allow you to easily communicate how your network is built to your internal teams and management. They say a picture paints a thousand words, having a clear set of infrastructure diagrams for internal presentations, proposals or even audits, enable you to easily demonstrate how your network is built. 

Google Cloud Diagram

A clear concise Google Cloud Diagram will typically be laid out by Network as the containing layout which holds the GCP network resources, the configured availability zones and subnets set up in your GCP account.


Having your GCP network infrastructure laid out this way shows you what zones you have configured and what resources have been provisioned in each zone.  This is very useful when visually assessing the redundancy in your network.  What happens to your application if any one of the zones has an outage. Will your application persist or die?

Interactive Google Cloud Diagram

The major downside when manually creating Google Cloud infrastructure diagrams is the inordinate amount of time and effort involved. Constantly bouncing backwards and forwards from your drawing canvas to your console to establish what resources are there and how they are configured is both time consuming and easily prone to error.

The way hava.io approaches this challenge is with hands-free Google Cloud Diagram automation.

There is a danger with automation however that your diagrams could can get filled with too much information, which results in an unreadable diagram.

Instead of trying to fit all the information for each resource onto the diagram, Hava diagrams are interactive.  If you want to deep dive into the settings and status of a visualized resource, you simply click on it and the attribute pane to the right hand side of the diagram changes to reveal contextual configuration settings related to that resource.


For instance, selecting the demo-redis memory store resource on the diagram above, changes the attribute pane to the right hand side of the diagram to show all the known information related to that resource.

The end result of this approach is that all the critical data you need is one click away without having to leave the diagram. The generated GCP diagram no-matter how complex remains uncluttered, clean and easy to understand.

Exporting A Google Cloud Diagram

From an engineering perspective, especially for your existing Google Cloud Platform infrastructure, the native Hava diagrams should have everything you need in terms of running resources and network infrastructure.

There are however, some good reasons for wanting to export your diagrams.

Editing. Hava has built a reputation on accuracy. The diagrams generated and stored within the Hava diagram generator application reflect what actually exists in your cloud environment. The diagrams produced by Hava can be relied upon as they are automatically generated from the source of truth and cannot be manipulated by manually adding or removing resources and metadata that could accidentally be viewed as fact. 

Presentations.  You may need to showcase infrastructure in a presentation or proposal. Hava lets you export images in PNG or PDF for inclusion in such documents.

Hava also provides the ability to export VSDX file formats (Microsoft Visio) so you can edit the diagrams outside of Hava if you need to add to them or use them as a starting point for proposals or network improvements.  If you don't have Visio, importing the VSDX files into draw.io/diagrams.net will provide similar editing functionality.

Diffing & Comparisons.  You may encounter a scenario where you need a granular comparison of resource settings between two network diagram versions.  Exporting is available in both JSON and CSV formats to facilitate data comparisons.

Offline Storage. You may have compliance or internal policy requirements to keep your network diagrams archived in hard copy or stored elsewhere digitally.

Custom Google Cloud Diagrams

When you connect your GCP account to Hava, your Google Cloud configuration is scanned and the discovered networks are used to generate separate diagrams which appear in your Hava dashboard (along side any AWS or Azure accounts you have also connected). 

This means you get fast, accurate documentation that keeps itself up to date. Sometimes however, you may only be interested in a subset of your GCP network, like an individual subnet, a certain type of resource or resources from a specific project or application with a specific tag.

Hava provides you with the ability to generate custom diagrams using a number of reserved search terms as well as customer generated tag pairs. This means there is almost unlimited flexibility to create just the diagrams you need.


The reserved search parameters include multi platform terms like

  • Region:
  • Name:
  • VPC:
  • Subnet:
  • Type:
  • Source:
  • IP:

As well as GCP Specific terms

  • Project:

You can also use tags you have defined on your resources when defining custom diagrams. So for instance if you created a tag to identify whether a resource was related to a dev or production environment it might look something like  "ProjectStatus:Prod"  or "ProjectStatus:Dev" or whatever tag/value pairs you have used.

An arbitrary "ProjectStatus" tag could  be used to build diagrams that just show everything tagged with a status of "Dev"

Any search parameter entered that isn't in the list of reserved terms will be treated as a tag.

You can enter these custom queries on-the-fly to build diagrams to view once, or to easily track down resources in very large networks. The typical use case is where you are trying to locate a specific resource that could be in any one of hundreds of projects or subnets across any of the accounts you have connected to Hava.

If you want to retain custom diagram for repeated use, then you have the ability to save the diagram to your environment dashboard. Once you save the custom Google Cloud diagram, Hava will treat it like all other auto generated diagrams and continuously poll the components looking for changes. When changes are detected Hava will automatically update the custom diagram and place the superseded diagram into version history when changes are detected.

A typical use-case for saved custom diagrams is when you want to isolate dev vs production environments onto separate diagrams, create single resource type diagrams, drawing data from multiple accounts onto one diagram (like databases for a DbAdmin) , or to create Hybrid cloud diagrams from multiple cloud vendors.

Google Cloud Diagram Versioning

Keeping your cloud infrastructure diagrams up to date can be incredibly time consuming and is an often forgotten task. We all mean to get around to updating diagrams after making config changes or provisioning new resources, but rarely do. There is almost always something that will take priority over updating the documentation.

The Hava solution is to automate the update process. Whether you are changing your network manually, deploying infrastructure as code or have autoscaling in place, monitoring your network and updating diagrams as changes happen via automation is the only way to ensure you always have up to date diagrams on hand.

Just like Hava automatically generates your diagrams when you connect a data source, Hava also keeps your Google Cloud Diagrams up to date by continuously polling your GCP account configuration settings and producing a new diagram set when resource or network changes are detected.

However, there can sometimes be a downside to automation like this.  If a number of consecutive config changes are made in between updating diagrams, then there is a danger that the previous working network design, or changes that cause a problem you are trying to diagnose will be lost if you don't capture copies of the diagrams every time a change is detected.

Having a diagram of the last stable GCP configuration is invaluable when diagnosing outages or identifying critical resources that have gone offline or have been inadvertently modified or deleted. Capturing the changes via versioning instead of simply overwriting the live diagrams mitigates the problem of identifying changes that may have been overwritten.

It is useful to have an audit trial of consecutive configuration changes to enable you to track back between network designs to see what changed and why things deteriorated or improved due to the changes.

Hava.io's approach to this challenge is to automatically update your Google Cloud diagram as changes are detected, but to also place the superseded diagram sets individually into version history. 


These "Versions" are a complete diagram set that is fully interactive, meaning you can still  open up an older version of a diagram, click around the diagram, pull up resources and settings to view as it was configured at the time the version was captured. So not only do you have the current GCP network infrastructure always available in detail, you can also step back through iterations of your network to find out what has changed over time.

Google Cloud Platform Icons

Hava discovers resources configured in your GCP account.  Depending on the resource, discovered components may or may not be visualised on your GCP infrastructure diagrams. This list is updated frequently. If you can't see a resource you are working with, contact support for a status.

Items that are not visualised on your diagrams are available on the "List View" so you can still analyse and export a full list of everything discovered.

Resources Visualised


Compute Backend Service

External VPN Gateway

Compute Instance

Compute Interconnect

Compute Nat Gateway

Compute Network

Compute Router

Compute Subnetwork

Compute URL Map

VPN Gateway

DNS Managed Zone

Memory Store Instance

SQL Instance

Storage Bucket


Imported resources not visualised on your automated interactive cloud infrastructure diagram will appear within the attributes tab and on the Hava List View

Non Visualised Resources

Compute Address

Compute Autoscaler

Compute Backend Bucket



Forwarding Rule

Forwarding Rule Targets

Instance Group

Interconnect Attachment

Network Endpoint Group

Node Group


SSL Certificate

SSL Policy

VPN Tunnel




If you would like to check out a Google Cloud Diagram of your infrastructure using Hava, you can open a free account and connect your account or import a demo GCP environment to get familiar with the process here:


Team Hava

Written by Team Hava

The Hava content team