Cloud Armor
Sauter à la navigation
Sauter à la recherche
Sommaire
Présentation
Cette section a pour objet de regrouper les sujets traitant de Google Cloud Armor.
Description
Google Cloud Armor est la solution de pare-feu d'application web pour protéger les charges de travail contre les attaques DDoS sur Google Cloud Platform.
Google Cloud Armor vs Project Shield
Question posée auprès de Project Shield
We use GCP with HTTP load balancers. As written in the GCP documentation, Cloud Armor Standard is activated. Is Cloud Armor doing the same job as Project Shield ? I mean, I have some domains on Project Shield which are also on GCP with HTTP load balancer. Is Project Shiedl superfluous ?
Réponse de Project Shield
Project Shield operates on Google Cloud and uses Cloud Armor as it's primary defense provider. Shield configures custom defense rules on your behalf to filter out most traffic from attackers. In addition, Shield is able to serve your traffic from Google caches using Cloud CDN. If your endpoint is hosted on GCP, with CloudCDN enabled, and you are able to Cloud Armor defense rules yourself, you may not need additional protection from Shield. Please note that the specific rules you apply on Cloud Armor may greatly change defense performance on your site. Consider using Cloud Armor Adaptive Protection, which can recommend specific defense rules.
