Create different instance types on GCP

The procedure for creating different instance types on GCP basically boils down to choosing the correct options on your google console. Some specific examples are given below.

Create an Ubuntu LTS instance

On your Google Cloud console, while creating a new instance from Compute Engine > VM instances> CREATE INSTANCE:

  • select Ubuntu and Ubuntu 24.04 LTS in Boot disk > CHANGE > Operating system and Version

Create an Ubuntu Pro instance

On your Google Cloud console, while creating a new instance from Compute Engine > VM instances> CREATE INSTANCE:

  • select Ubuntu Pro and Ubuntu 24.04 LTS Pro Server in Boot disk > CHANGE > Operating system and Version

Once the instance is up, ssh into it and run

pro status

to check that livepatch, esm-apps and esm-infra are enabled.

Create an Ubuntu Pro FIPS instance

On your Google Cloud console, while creating a new instance from Compute Engine > VM instances> CREATE INSTANCE:

  • select Ubuntu Pro and Ubuntu 20.04 LTS Pro FIPS Server in Boot disk > CHANGE > Operating system and Version

Once the instance is up, ssh into it and run

uname -r

The kernel version will include fips in the name. To check the FIPS packages, run:

dpkg-query -l | grep fips

It should show you a long list of packages with fips in the name or version.

Create an ARM-based instance

On your Google Cloud console, while creating a new instance from Compute Engine > VM instances> CREATE INSTANCE:

  • choose the ARM CPU platform T2A in Machine configuration > Series

  • choose an ARM compatible OS and version, say Ubuntu and Ubuntu 24.04 LTS Minimal in Boot disk > CHANGE > Operating system and Version

Create an AMD SEV based confidential computing VM

On your Google Cloud console, while creating a new instance from Compute Engine > VM instances> CREATE INSTANCE:

  • In the Security section, select Confidential VM service > ENABLE

Choose one of AMD SEV or AMD SEV-SNP in the service type and confirm the selection. The latest compatible Ubuntu LTS image will be selected automatically.

Create an Intel® TDX based confidential computing VM

On your Google Cloud console, while creating a new instance from Compute Engine > VM instances> CREATE INSTANCE:

  • In the Security section, select Confidential VM service > ENABLE

Choose one of Intel TDX in the service type and confirm the selection. The latest compatible Ubuntu LTS image will be selected automatically.

Optionally, you can also use the Google Cloud CLI to create the VM. Use the instances create command with confidential-compute-type=TDX and a machine type chosen from the C3 machine series since they use the 4th Gen Intel® Xeon CPUs.

gcloud compute instances create INSTANCE_NAME \
 --machine-type=c3-standard-4 \
 --zone=us-central1-a \
 --confidential-compute-type=TDX \
 --maintenance-policy=TERMINATE \
 --image-family=ubuntu-2404-lts-amd64 \
 --image-project=ubuntu-os-cloud

where:

  • INSTANCE_NAME: is the name of the instance to create and

  • image-family can be set to a supported image family, such as ubuntu-2204-lts or ubuntu-2404-lts-amd64.