Examtopics

Professional Cloud Security Engineer

188
190

Topic 1 Question 189
Your application is deployed as a highly available, cross-region solution behind a global external HTTP(S) load balancer. You notice significant spikes in traffic from multiple IP addresses, but it is unknown whether the IPs are malicious. You are concerned about your application's availability. You want to limit traffic from these clients over a specified time interval.

What should you do?
- Configure a throttle action by using Google Cloud Armor to limit the number of requests per client over a specified time interval.
- Configure a rate_based_ban action by using Google Cloud Armor and set the ban_duration_sec parameter to the specified lime interval.
- Configure a firewall rule in your VPC to throttle traffic from the identified IP addresses.
- Configure a deny action by using Google Cloud Armor to deny the clients that issued too many requests over the specified time interval.
ユーザの投票
コメント(5)
- 正解だと思う選択肢: A
  A you want to limit, not ban traffic
  
  https://cloud.google.com/armor/docs/rate-limiting-overview#throttle-traffic
  
  👍 4
  a190d622023/08/03
- 正解だと思う選択肢: A
  All can be done but option A is correct cuz a sentence "number of requests per client."
  
  👍 2
  cyberpunk212023/08/24
- A https://cloud.google.com/blog/products/identity-security/announcing-new-cloud-armor-rate-limiting-adaptive-protection-and-bot-defense
  
  👍 1
  K1SMM2023/08/02
シャッフルモード

188
190