The current design for an app environment I'm working on is ALB --> API
Gateway --> multiple Cloud Functions gen2. Ideally, I would like to
restrict ingress and egress traffic on these functions and I thought
restricting ingress to "internal and clou...