This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Cloud Armour policy

Posted on 06-24-2024 10:35 AM
maheshdo
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Team,

Looking to lock down external load balancer from CDN CIDR EdgeLocation IPs.
I was able to create the policy in Cloud Armour to allow only the CIDR ranges from CDN and was able to see the the rules starting with rule number 1000 created under the policy.

Need to know is there a way in cloud armor policy that will continue to allow all the traffic , but alert when access from non CDN ip address is seen, so I can then investigate the source of access and determine if the access should be blocked or allowed.

Solved Solved
7 1 192
Topic Labels
Jump to Solution
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
pfilourenco
Bronze 5
Bronze 5
Reply posted on --/--/---- --:-- AM

Hi,

After enabling request-logging you can use log-based-alerts to achieve your use-case.

BR,

Pedro Lourenço

View solution in original post

Jump to Solution
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
pfilourenco
Bronze 5
Bronze 5
Reply posted on --/--/---- --:-- AM

Hi,

After enabling request-logging you can use log-based-alerts to achieve your use-case.

BR,

Pedro Lourenço

Jump to Solution
0 Likes
Top Labels in this Space
Top Solution Authors
View all