How can you automatically review and verify that your Google Cloud Next Generation Firewall (Cloud NGFW) configurations do not contain any rules allowing inbound internet traffic to your VMs and services, without performing manual checks?

Exam-Like

Review the firewall policy rules associated with the VPC, and filter for rules that allow ingress from 0.0.0.0/0.

14.3%

Enable "Overly permissive rules insights" in Firewall Insights. Review results for rules that show allowed ingress traffic from internet sources.

57.1%

Run Connectivity Tests from multiple external sources to double-check ingress traffic settings.

14.3%

Enable the Network Analyzer API and review the "VPC Network" category insights.

14.3%

Google Professional Cloud Network Engineer