-
Author: @GangGreenTemperTatum
-
This is my personal created GCP lab for testing and learning about Cloud Armor WAF Security Policies
-
GCP lab environment is deployed and ongoing maintained via Terraform IaC provisioning tools
- OWASP CRS
- OWASP ModSecurity Core Rule Set (CRS)
terraform - google_compute_security_policy
- ISO 3166-1 alpha-2 (for blocking regions
- Cloud Armor Terraform Module
- Configure Google Cloud Armor security policies
- Configure custom rules language attributes
- Rate limiting overview
You can refer to the following image created by Priyanka Vergadia (credit)