A customer needs to launch a 3-tier internal web application on Google Cloud Platform (GCP). The customer's internal compliance requirements dictate that end-user access may only be allowed if the traffic seems to originate from a specific known good CIDR. The customer accepts the risk that their application will only have SYN flood DDoS protection. They want to use GCP's native SYN flood protection. Which product should be used to meet these requirements?
A) Cloud Armor
B) VPC Firewall Rules
C) Cloud Identity and Access Management
D) Cloud CDN

Question

Quizplus · Accepted Answer

Cloud Armor is a web application firewall that can be used to protect against DDoS attacks, including SYN floods. It can also be used to restrict access to a web application based on the source IP address.

A Customer Needs to Launch a 3-Tier Internal Web Application