Production Story: Cloud Armour — Saviour

GLB Error
Istio Success Rate
Application Design
Architecture Diagram
#Create a Policy
gcloud compute --project=<project-id> security-policies \
create block-user-attack \
--description=block-user-attack
#Block IP or IP ranges upto 10
gcloud compute --project=<project-id> security-policies rules \
create 100 --action=deny\(403\) \
--security-policy=block-user-attack \
--src-ip-ranges=<attacker ip>/32
#Default allow all traffic
gcloud compute --project=<project-id> security-policies rules \
create 2147483647 --action=allow \
--security-policy=block-user-attack \
--description="Default rule,higher priority overrides it" \
--src-ip-ranges=\*
#Assign Policy to Backend Services
gcloud compute --project=<project-id> backend-services \
update um-istio-beckendservice \
--security-policy=block-user-attack
We say bye bye to attacker

--

--

--

Working as Cloud Architect & Software enthusiastic

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

{UPDATE} Spaceship Games Hack Free Resources Generator

Just How Safe Are Fake Tan And Spray TansExactly? https://t.co/zHRtPM8v51 https://t.co/pzkXH4UOnO

JWT & JOSE: Peeping under the hood: Part 2

2FA Architecture — The threat to privacy of modern Internet

Authentication Patterns and Best Practices For SPAs

Authentication Patterns and Best Practices for Single-Page Apps

eSSIF: The European self-sovereign identity framework

Yet Another OSCP Write Up

The story of my first ever $xxxx bounty from Facebook.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
NIRAV SHAH

NIRAV SHAH

Working as Cloud Architect & Software enthusiastic

More from Medium

Oracle’s Cloud Vision For The Future of Healthcare IT

Distributed Cloud Computing and its Examples in Business

Distributed Cloud Computing Examples

Authenticated Connectors In Microsoft Teams

Enable MFA for AWS Workspaces using FreeRadius Server