TechQA.

Google Cloud Armor

683 views Asked by At

I want to create new Cloud Armor policy for my website to prevent DDOS attack, which is hosted on GCP VM. So how do I prevent & configure from tcp , udp flood & ICMP. Also what are the IP's to put in to blacklist.

Please suggest me, Thanks

google-cloud-armor
Original Q&A
2

There are 2 answers

0
marian.vladoi On

According to the official doucumentation

Google Cloud Armor security policies are available only for backend services behind an external HTTP(S) load balancer.

Google Cloud Armor security policies are made up of rules that filter traffic based on layer 3, 4, and 7 attributes. For example, you can specify conditions that match on an incoming request's IP address, IP range, region code, or request headers.

You can find a detailed explanation here:

Configuring Google Cloud Armor security policies

0
Manoj_Pachigolla On

@Vittal

Regarding the last part of your question ( as the first part already answered ): "Also what are the IP's to put on to blacklist."

What to block is absolutely based on your business. But if your project is already a part of the "Adaptive Protection Plan", then you can use GCP Threat Intelligence PreConfigured rules like :

  1. Blocking ToR Network. 2) Blocking Crawlers and Search Engine IP's 3) Blocking iplist-search-engines-crawlers

You can find more of these thread detection rules from the below article: https://cloud.google.com/armor/docs/threat-intelligence#configure-nti

Thanks Manoj

Related Questions in GOOGLE-CLOUD-ARMOR

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions