Answer-first summary for fast verification
Answer: Enable logging in the Application Load Balancer backend and set the log level to VERBOSE in the Cloud Armor policy.
Option B is the correct answer because enabling verbose logging in Cloud Armor provides detailed logs that capture specific request attributes and rule triggers, which is essential for investigating why traffic is being blocked. This approach, as supported by the community discussion (with 89% consensus and upvoted comments), allows for comprehensive troubleshooting without altering the security posture by allowing potentially malicious traffic. Option C (preview mode) is less suitable as it stops enforcement of rules, potentially exposing the application to threats during investigation. Option A is irrelevant as it pertains to backend logging rather than Cloud Armor rule triggers, and Option D, while useful for log analysis, does not directly enable the detailed Cloud Armor logging needed to identify rule triggers.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You want to investigate which Cloud Armor security policy rules are blocking traffic to your website by collecting the relevant request logs. What should you do?
A
Modify the Application Load Balancer backend and increase the tog sample rate to a higher number.
B
Enable logging in the Application Load Balancer backend and set the log level to VERBOSE in the Cloud Armor policy.
C
Change the configuration of suspicious web application firewall rules in the Cloud Armor policy to preview mode.
D
Create a log sink with a filter for togs containing redirected_by_security_policy and set a BigQuery dataset as destination.