PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #134
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #134: Real Exam Question with Answer & Explanation
The correct answer is D: Firewall Insights. https://cloud.google.com/network-intelligence-center/docs/firewall- insights/concepts/overview#shadowed-firewall-rules Firewall Insights analyzes your firewall rules to detect firewall rules that are shadowed by other rules. A shadowed rule is a firewall rule that has all of its
Question
You recently joined the networking team supporting your company's Google Cloud implementation. You are tasked with familiarizing yourself with the firewall rules configuration and providing recommendations based on your networking and Google Cloud experience. What product should you recommend to detect firewall rules that are overlapped by attributes from other firewall rules with higher or equal priority?
Options
- ASecurity Command Center
- BFirewall Rules Logging
- CVPC Flow Logs
- DFirewall Insights
Explanation
https://cloud.google.com/network-intelligence-center/docs/firewall- insights/concepts/overview#shadowed-firewall-rules Firewall Insights analyzes your firewall rules to detect firewall rules that are shadowed by other rules. A shadowed rule is a firewall rule that has all of its relevant attributes, such as its IP address and port ranges, overlapped by attributes from one or more rules with higher or equal priority, called shadowing rules.
Topics
Community Discussion
No community discussion yet for this question.