Topic 1 Question 110
You are designing a new global application using Compute Engine instances that will be exposed by a global HTTP(S) load balancer. You need to secure your application from distributed denial-of-service and application layer (layer 7) attacks. What should you do?
Configure VPC Service Controls and create a secure perimeter. Define fine-grained perimeter controls and enforce that security posture across your Google Cloud services and projects.
Configure a Google Cloud Armor security policy in your project, and attach it to the backend service to secure the application.
Configure VPC firewall rules to protect the Compute Engine instances against distributed denial-of-service attacks.
Configure hierarchical firewall rules for the global HTTP(S) load balancer public IP address at the organization level.
ユーザの投票
コメント(6)
- 正解だと思う選択肢: B
100% sure for B, Cloud Armor is security service to DDoS GCP.
👍 3ccieman20162022/12/02 B. Configure a Google Cloud Armor security policy in your project, and attach it to the backend service to secure the application.
👍 2AzureDP9002022/11/30B as Cloud Armor protects against DDoS
👍 2playpacman2022/12/01
シャッフルモード