How to configure rules and policies in Google Cloud Armor | C2C Community

How to configure rules and policies in Google Cloud Armor

Categories: Identity and Security

Need to maintain a consistent security posture across your Internet-facing applications, but want the flexibility to tweak requirements for applications? Welcome back to Go Deep with Google Cloud Armor, where we show you what features are available, how to use them, and how you can leverage them in your environment. Watch to learn how you can configure Cloud Armor policies and rules to secure your applications!

 

 

Chapters:

0:00 - Intro

1:03 - What this video covers

2:03 - How to create a new rule from scratch

4:54 - How to clone an existing out-of-the-box rule and modify it to create a new rule

7:44 - How to copy a rule or policy and apply it to multiple backends / Rate limiting feature

12:46 - How to use a Rule in Preview mode and test a new rule before enabling it / Threat intelligence feature

17:35 - Wrap up

 

Previous video → https://goo.gle/3OvKs4M

Set up IAM permissions for Google Cloud Armor security policies → https://goo.gle/3guyUCm

Configure custom rules language attributes → https://goo.gle/3Ub7b7O

 

You can find Cloud Armor's pre-configured, out of the box WAF rules for the OWASP Top 10 (sourced from the ModSecurity Core Rule Set (CRS) 3.0 and CRS 3.3) here → https://goo.gle/3AFpxa6

This is where we grabbed the "evaluatePreconfiguredExpr('php-v33-stable')" portion of the rule we modified in the example.

 

Go Deep with Google Cloud Armor playlist → https://goo.gle/GoDeepWithGoogleCloud...

Subscribe to Google Cloud Tech → https://goo.gle/GoogleCloudTech #GoDeepWithGoogleCloudArmor

Be the first to reply!