Awesome question...Need to think how to automate this process...Some rough ideas is look into Stackdriver logs, filter the results and analysis IPs sending more request and run a cloud to update armor setting
Is my understanding correct that "Cloud armor cab be used near edge location devices only (i.e load balancer) and firewall rules are applied within VPC"
GCP has Cloud IAM which provides Roles like Primitive Roles (Owner, Editor & Viewer), Predefined Role & Custom Role. For more detail refer to cloud.google.com/iam/docs/understanding-roles
Hi Mahesh, thanks for your video. when I am trying to access cloud Armor. I am getting no security policy and is showing as 0 globally. Any suggestion on how to increase this. I renewed my billing account from free trial.
@@LearnGoogleCloudwithMahesh thanks Mahesh for the reply. I renewed from free trial. Even I am not able to access cloud Armor. And had few issues with quotas aslo even in non free tier. Should I go with any Google partner billing account for these types of issues. Is going with partners suggested
I'm learning new new concept everytime I watch your video.. thanks a lot for helping new learner in this way..
Happy to know that
Exceptionally brilliant. Thanks for the consistent efforts. Enjoying the series.
Informative, excellent!!
Thanks for your videos , keep it up 👍🏻
Thanks Rahul
Thanks!
Good one !
Thanks, Srinivas
We can also achieve block ip address in VPC firewall .
How to monitor and alert slack and email - google cloud functions , any tools , except stack-driver or google cloud suite
Thanks for your video. How do you automate this process? . Every time blocking bad ip manually to avoid DDoS attack is not a good idea.
Awesome question...Need to think how to automate this process...Some rough ideas is look into Stackdriver logs, filter the results and analysis IPs sending more request and run a cloud to update armor setting
Very useful.
Thanks Suresh
Is my understanding correct that "Cloud armor cab be used near edge location devices only (i.e load balancer) and firewall rules are applied within VPC"
Perfect understanding
@@LearnGoogleCloudwithMahesh Thanks Mahesh. Any new batch for PCA , I am interested to join.
@@aaaarjuna2 Pls drop an email I wil share more details
hi Mahesh, can we also use firewall for instance group if I do not want to use Armor?
For Instance Group use Firewall
For Load Balancer use Cloud Armor
Can we protect cloud functions with Google armour. If yes how?
Yes, Possible using Serverless NEG
@@LearnGoogleCloudwithMahesh do we still need load balancer even if we use serverless NEG on cloud functions
@@ateekain5739 yes
GCP have different roles like developer and admin. Plz clarify.
GCP has Cloud IAM which provides Roles like Primitive Roles (Owner, Editor & Viewer), Predefined Role & Custom Role. For more detail refer to cloud.google.com/iam/docs/understanding-roles
volumn is a little low, caused it difficult to hear clearly
Apologies...I have fixed the volume issue in my new videos
@@LearnGoogleCloudwithMahesh thanks,content is excellent,this is just a small issue.
@@user-wd3qi9yj1i thanks
Hi Mahesh, thanks for your video. when I am trying to access cloud Armor. I am getting no security policy and is showing as 0 globally. Any suggestion on how to increase this. I renewed my billing account from free trial.
Recently in GCP Free Trial/ Tier account one cannot create Cloud Armor
@@LearnGoogleCloudwithMahesh thanks Mahesh for the reply. I renewed from free trial. Even I am not able to access cloud Armor. And had few issues with quotas aslo even in non free tier. Should I go with any Google partner billing account for these types of issues. Is going with partners suggested
@@sivvav7490 If you just recently converted to Paid account reach out to Support to increase the Quota.
I have doubt in this. How we can identify that particular IP address must be a hacker? Is there any proof?
Looking at the Logs can help