You are configuring Cloud Armor to protect a web application. Which TWO types of rules can you implement? (Select TWO)

Answer options:

IP allowlist/denylist rules.

Preconfigured WAF rules for SQL injection and Cross-Site Scripting (XSS).

IAM identity-based access rules.

VPC Peering routing rules.

Data Loss Prevention (DLP) redaction rules.

How to approach this question

Identify Cloud Armor capabilities.

Full Answer

Cloud Armor operates at the edge, providing IP-based access control and Layer 7 Web Application Firewall (WAF) rules to protect against common attacks like SQLi and XSS.

Common mistakes

Confusing Cloud Armor with IAP (identity) or DLP (data redaction).

Question 44 All questions Question 46

Practice the full GCP Professional Cloud Architect Practice Exam 2

50 questions · hints · full answers · grading

More questions from this exam

Q01CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...Medium Q02CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...Medium Q03CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...Hard Q04CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...Medium Q05CASE STUDY: TechStream Gaming. 500 emp, $100M rev. On-prem US/EU, 200 servers, MySQL 5TB. 2M peak...Easy

View all 50 questions →