Topic 1 Question 202
Your Google Cloud organization allows for administrative capabilities to be distributed to each team through provision of a Google Cloud project with Owner role (roles/owner). The organization contains thousands of Google Cloud projects. Security Command Center Premium has surfaced multiple OPEN_MYSQL_PORT findings. You are enforcing the guardrails and need to prevent these types of common misconfigurations.
What should you do?
Create a hierarchical firewall policy configured at the organization to deny all connections from 0.0.0.0/0.
Create a hierarchical firewall policy configured at the organization to allow connections only from internal IP ranges.
Create a Google Cloud Armor security policy to deny traffic from 0.0.0.0/0.
Create a firewall rule for each virtual private cloud (VPC) to deny traffic from 0.0.0.0/0 with priority 0.
ユーザの投票
コメント(6)
- 👍 4K1SMM2023/08/03
- 正解だと思う選択肢: B
B makes sense
👍 2pfilourenco2023/08/04 - 正解だと思う選択肢: B
This question is quite weird, none of the option will prevent this type of misconfiguration
👍 2Andrei_Z2023/09/04
シャッフルモード