Need to maintain a consistent security posture across your Internet-facing applications, but want the flexibility to tweak requirements for applications? Welcome back to Go Deep with Google Cloud Armor, where Debi Cabrera, Developer advocate show you what features are available, how to use them, and how you can leverage them in your environment. Watch to learn how you can configure Cloud Armor policies and rules to secure your applications!
Click on the video below to watch it in detail.
Chapters:
0:00 - Intro
1:03 - What this video covers
2:03 - How to create a new rule from scratch
4:54 - How to clone an existing out-of-the-box rule and modify it to create a new rule
7:44 - How to copy a rule or policy and apply it to multiple backends / Rate limiting feature
12:46 - How to use a Rule in Preview mode and test a new rule before enabling it / Threat intelligence feature
17:35 - Wrap up
Extra Credit:
- You can find Cloud Armor's pre-configured, out of the box WAF rules for the OWASP Top 10 (sourced from the ModSecurity Core Rule Set (CRS) 3.0 and CRS 3.3) here → https://goo.gle/3AFpxa6
- This is where we grabbed the "evaluatePreconfiguredExpr('php-v33-stable')" portion of the rule we modified in the example. Go Deep with Google Cloud Armor playlist → https://goo.gle/GoDeepWithGoogleCloud...
- Subscribe to Google Cloud Tech → https://goo.gle/GoogleCloudTech