Exam Professional Cloud Security Engineer topic 1 question 114 discussion

Firewall Insights analyzes your firewall rules to detect firewall rules that are shadowed by other rules. A shadowed rule is a firewall rule that has all of its relevant attributes, such as its IP address and port ranges, overlapped by attributes from one or more rules with higher or equal priority, called shadowing rules. https://cloud.google.com/network-intelligence-center/docs/firewall-insights/concepts/overview

D is the answer. https://cloud.google.com/network-intelligence-center/docs/firewall-insights/concepts/overview#shadowed-firewall-rules Firewall Insights analyzes your firewall rules to detect firewall rules that are shadowed by other rules. A shadowed rule is a firewall rule that has all of its relevant attributes, such as its IP address and port ranges, overlapped by attributes from one or more rules with higher or equal priority, called shadowing rules.

To detect firewall rules that are overlapped by attributes from other firewall rules with higher or equal priority, you can use Firewall Insights. Firewall Insights is a feature of Google Cloud that provides visibility to firewall rule usage metrics and automatic analysis on firewall rule misconfigurations. It allows you to improve your security posture by detecting overly permissive firewall rules, unused firewall rules, and overlapping firewall rules. With Firewall Insights, you can automatically detect rules that can’t be reached during firewall rule evaluation due to overlapping rules with higher priorities. You can also detect unnecessary allow rules, open ports, and IP ranges and remove them to tighten the security boundary.

definitely D - https://cloud.google.com/network-intelligence-center/docs/firewall-insights/concepts/overview

D. Firewall Insights

D. Firewall Insights

Answer = D.

Answer = D Firewall Insights analyzes your firewall rules to detect firewall rules that are shadowed by other rules.