July 2018
Intermediate to advanced
506 pages
16h 2m
English
Content preview from Google Cloud Platform for Developers
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Target
The target of a firewall rule is the resource or resources that the rule is applied to. For ingress rules, the target is the instance that receives the request. For egress rules, the target is the instance making the request. Google Cloud firewall rules can target resources in one of three ways:
- All instances in the network
- All instances with a given tag
- All instances with a given service account
If no target is specified, the firewall will be applied to all instances in the network. Tags are a great way to target any subset of instances within the network, regardless of which subnet they are a member of. This is often used to create tiered network architectures, as shown in later sections.