What product should you recommend to detect firewall rules that are overlapped by attributes from other firewall rules with higher or equal priority?

You recently joined the networking team supporting your company’s Google Cloud implementation. You are tasked with familiarizing yourself with the firewall rules configuration and providing recommendations based on your networking and Google Cloud experience.

What product should you recommend to detect firewall rules that are overlapped by attributes from other firewall rules with higher or equal priority?
A . Security Command Center
B . Firewall Rules Logging
C . VPC Flow Logs
D . Firewall Insights

Answer: D

Explanation:

https://cloud.google.com/network-intelligence-center/docs/firewall-insights/concepts/overview#shadowed-firewall-rules

Firewall Insights analyzes your firewall rules to detect firewall rules that are shadowed by other rules. A shadowed rule is a firewall rule that has all of its relevant attributes, such as its IP address and port ranges, overlapped by attributes from one or more rules with higher or equal priority, called shadowing rules.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments