Production Story: Cloud Armour — Saviour

GLB Error
Istio Success Rate
Application Design
Architecture Diagram
#Create a Policy
gcloud compute --project=<project-id> security-policies \
create block-user-attack \
--description=block-user-attack
#Block IP or IP ranges upto 10
gcloud compute --project=<project-id> security-policies rules \
create 100 --action=deny\(403\) \
--security-policy=block-user-attack \
--src-ip-ranges=<attacker ip>/32
#Default allow all traffic
gcloud compute --project=<project-id> security-policies rules \
create 2147483647 --action=allow \
--security-policy=block-user-attack \
--description="Default rule,higher priority overrides it" \
--src-ip-ranges=\*
#Assign Policy to Backend Services
gcloud compute --project=<project-id> backend-services \
update um-istio-beckendservice \
--security-policy=block-user-attack
We say bye bye to attacker

--

--

--

Working as Cloud Architect & Software enthusiastic

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Whistleblower's Revolution

Password Cracking

Blockchain & EU-GDPR: How it can work out

VPNs: Why So Many People turn to Them And Why You’re Missing Out For not Using One

{UPDATE} Chess Online! Hack Free Resources Generator

{UPDATE} Car Driver 4 (Hard Parking) Hack Free Resources Generator

OSINT + Vulnerability Scanning (CMSC389R, Write-Up #2)

What the Latest Cybersecurity Report Means for Safeguarding Your Business

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
NIRAV SHAH

NIRAV SHAH

Working as Cloud Architect & Software enthusiastic

More from Medium

AWS Networking: The Basics Of VPCs

AN INTRODUCTION TO DEVSECOPS

A Modern Approach To Cloud Migration Strategy: The 6 R’s

How To Run Microservices On Google Cloud?