Lab
A Cloud Guru

Protecting Google Cloud VPC Resources with Cloud Armor

Cloud Armor is a full-featured service capable of blocking malicious distributed denial-of-service (DDoS) attacks at its source, along with many other use case scenarios. In this lab, you will use a pre-created script to create a load balanced application. You will then attack your application with a flood of traffic and use Cloud Armor to block the malicious traffic, enabling proper operation of your website.

Try for free Contact sales

Path Info

Level

Intermediate

Duration

30m

Published

Nov 08, 2019

Challenge

Create Infrastructure

In Cloud Shell, execute the provided script to build the necessary infrastructure.
Challenge

Simulate DDoS Attack

SSH into the DDoS Attack VM and execute the command to run Apache Benchmark in the background, directing traffic to the running application.
Challenge

Create Cloud Armor Policy

Set up a new Cloud Armor policy that allows ingress traffic by default, but blocks the traffic from a specified IP address.
Challenge

Verify Results

Review Cloud Armor logs and load balancer monitoring to confirm that the DDoS attack has been successfully blocked.

Author

A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.