This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Regarding configuring firewall on Load Balancers

Posted on 11-17-2023 05:05 AM
ishu1
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

I WANT TO ATTACH A FIREWALL ON MY LOAD BALANCER WHICH IS ATTACHED TO MY CLOUD RUN INSTANCE CAN I ABLE TO DO THAT?? I TRIED WITH CLOUD ARMOR IT THOUGH RESTRICTING MY APPLICATION BUT WHEN I TELNET TO THAT LB IP WITH PORT 80 IT IS SHOWING ME CONNECTED.

1 1 315
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
SHBASI96
Bronze 3
Bronze 3
Reply posted on --/--/---- --:-- AM

Cloud Armor only protects against Layer 7 attacks, such as HTTP and HTTPS requests. It does not protect against Layer 4 attacks, such as Telnet connections.

To restrict Telnet connections to your load balancer, you can use a firewall rule that blocks TCP port 23. This will prevent anyone from Telnetting to your load balancer's IP address, regardless of whether or not they have an account on your project.

like this example : 

name: block-tcp-port-23

direction: INGRESS

target: TARGET_NAME

action: "DENY_ALL"

sourceRanges: ["0.0.0.0/0"]

protocol: "tcp"

ports: ["23"]

Top Labels in this Space
Top Solution Authors
View all